[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Exchange of incident and vulnerability data

To: grip-wg@UU.NET
Subject: Exchange of incident and vulnerability data
From: Jeffrey Carpenter <jjc@cert.org>
Date: Mon, 15 Dec 1997 11:34:25 -0500 (EST)
Comment: grip-wg mailing list add/drop requests to Majordomo@TransSys.COM

> From the GRIP minutes:

> There was a suggestion to develop a document that would describe a common
> formatting for vulnerability reports. Computer incident response teams
> (e.g., CERT/CC), product vendors, and other organizations create their own
> documents with unique formatting. If these conformed to a set of basic
> guidelines, software could be written to parse the text to facilitate
> forwarding pertinent information to those who need it. This is currently a
> difficult task given the variety of formats. It was decided to encourage
> the author to write the draft document and the group would decide how to
> handle it once it existed.

I am currently working on this issue and on a paper related to this
subject and am interested in talking with the folks working on this
draft document.  Please drop me a note if you are working on it.

Thanks,


	jeff

Prev by Date: GRIP Working Group
Next by Date: Re: Exchange of incident and vulnerability data
Previous by thread: GRIP Working Group
Next by thread: Re: Exchange of incident and vulnerability data
Index(es):
- Date
- Thread