![[LWN Logo]](/images/lcorner.png)
![[LWN.net]](/images/Included.png)
|
|
|
|
From: InfoSec News <isn@c4i.org> To: isn@attrition.org Subject: [ISN] CVE dictionary contains more than 2,000 entries Date: Tue, 2 Apr 2002 02:09:44 -0600 (CST) http://www.gcn.com/vol1_no1/security/18320-1.html By William Jackson GCN Staff 04/01/02 The Common Vulnerabilities and Exposures lexicon, developed by Mitre Corp. of Bedford, Mass., to bring order to IT security, has grown to include more than 2,000 entries. The lexicon, found at cve.mitre.org, standardizes names and descriptions of known information security problems, making it easier for organizations to share data and for security tools to interoperate. Development began three years ago when there was no common way to identify or define the security exposures known at that time. "When we started in 1999, there were 321 entries on the list. Now there are 2,032, plus an additional 1,994 candidates being reviewed," CVE project leader Margie Zuk said. Nearly 50 commercial, academic and government organizations, including the National Institute of Standards and Technology, have adopted the CVE, and 75 vendors of network security products and services have announced that they will conform to the lexicon. The list of top 20 Internet security vulnerabilities published by the FBI and SANS Institute also follows the CVE lexicon. - ISN is currently hosted by Attrition.org To unsubscribe email majordomo@attrition.org with 'unsubscribe isn' in the BODY of the mail.