RE: Sources: Full and Partial Coverage (CNA increase)

To: "'Art Manion'" <amanion@cert.org>
Subject: RE: Sources: Full and Partial Coverage (CNA increase)
From: Carsten Eiram <che@secunia.com>
Date: Tue, 26 Jun 2012 06:19:22 +0000
Accept-Language: en-US, da-DK
CC: "'cve-editorial-board-list'" <cve-editorial-board-list@LISTS.MITRE.ORG>
Delivery-Date: Tue Jun 26 02:22:47 2012
In-Reply-To: <4FE8A81D.1040002@cert.org>
List-Help: <mailto:LISTSERV@LISTS.MITRE.ORG?body=INFO%20CVE-EDITORIAL-BOARD-LIST>
List-Owner: <mailto:CVE-EDITORIAL-BOARD-LIST-request@LISTS.MITRE.ORG>
List-Subscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-subscribe-request@LISTS.MITRE.ORG>
List-Unsubscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-unsubscribe-request@LISTS.MITRE.ORG>
References: <2F43C4D2BE8AD24C8AC17D8C64B379B316BE3E@IMCMBX01.MITRE.ORG> <ED311CBEE6993C428563DEDF6D083BC83E4ABFE7@usilms113b.ca.com> <alpine.LNX.2.00.1205091307280.10340@forced.attrition.org> <2F43C4D2BE8AD24C8AC17D8C64B379B316E94C@IMCMBX01.MITRE.ORG> <F4A3A6029AA9A54E8FA9BF5FB9834C790D6B76DF@exch-hq-1.secunia.local> <4FE8A81D.1040002@cert.org>
Sender: <owner-cve-editorial-board-list@LISTS.MITRE.ORG>
Thread-Index: AQHNUvzssa2F5duu10CInDG+g9z135cMIGPQ
Thread-Topic: Sources: Full and Partial Coverage (CNA increase)

> -----Original Message-----
> From: Art Manion [mailto:amanion@cert.org]
> Sent: 25. juni 2012 20:04
> To: Carsten Eiram
> Cc: 'Mann, Dave'; 'cve-editorial-board-list'
> Subject: Re: Sources: Full and Partial Coverage (CNA increase)
> 
> I have a vague future vision of more qualified and trained CNAs covering
> segments of the public vulnerability disclosure market (JPCERT for Japan, ICS-
> CERT for control systems, Red Hat for Red Hat, etc), with CVE being the CNA
> of last resort, as well as the conflict resolver and CNA grey-bearded guru.  In
> product terms, some CNAs could take responsibility for certain products or
> classes of product.  In source terms, CVE could monitor a set of current VDBs,
> and only put in further effort if something gets missed or there's a conflict.
 
I like that future vision, which should ensure both breadth and depth of coverage.

/Carsten

References:
- RE: Sources: Full and Partial Coverage
  - From: Carsten Eiram <che@secunia.com>
- Re: Sources: Full and Partial Coverage (CNA increase)
  - From: Art Manion <amanion@cert.org>

Prev by Date: Re: Sources: Full and Partial Coverage (CNA increase)
Next by Date: RE: Board meeting? Blackhat?
Prev by thread: Re: Sources: Full and Partial Coverage (CNA increase)
Next by thread: Re: Sources: Full and Partial Coverage
Index(es):
- Date
- Thread

Page Last Updated: November 06, 2012

Common Vulnerabilities and Exposures

RE: Sources: Full and Partial Coverage (CNA increase)