Date: Sun, 6 Aug 2000 04:13:09 -0500 From: InfoSec News <isn@C4I.ORG> Subject: [ISN] ICAT Searchable Vulnerability Index To: ISN@SECURITYFOCUS.COM Forwarded By: Peter Mell <peter.mell@nist.gov> The U.S. government has created a searchable index of computer vulnerabilities called ICAT that is publicly available at http://csrc.nist.gov/icat. ICAT links users into a variety of publicly available vulnerability databases and patch sites, thus enabling one to find and fix the vulnerabilities existing on their systems. ICAT is not itself a vulnerability database, but is instead a searchable index leading one to vulnerability resources and patch information. ICAT allows one to search at a fine granularity, a feature unavailable with most vulnerability databases, by characterizing each vulnerability by over 40 attributes (including software name and version number). ICAT indexes the information available in CERT advisories, Security Focus, ISS X-Force, NT Bugtraq, Bugtraq, and a variety of vendor security and patch bulletins. ICAT does not compete with publicly available vulnerability databases but instead is a search engine that drives traffic to them. ICAT is maintained by the National Institute of Standards and Technology and is based on the CVE vulnerability naming standard (http://cve.mitre.org). ISN is hosted by SecurityFocus.com --- To unsubscribe email LISTSERV@SecurityFocus.com with a message body of "SIGNOFF ISN".