[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Regarding USCYBERCOM

On Wed, Aug 10, 2016 at 12:26 PM, Landfield, Kent B <kent.b.landfield@intel.com> wrote:
Can we talk about this before we anoint someone?

Personally I do not believe we should be adding board members based on news articles. Let's see how it goes first and then if it makes sense, do it. 

What would be the international repercussions by doing this? We want CVE as a global vulnerability identification means, not just a US one. 

At this point we have not had the preliminary discussions to tie ourselves to aa org such as this. Let's have those first...

My personal take: the US DoD is a HUGE consumer of CVE and related standards (witness NVD, SCAP, STIG, etc.). I'd at least like to get someone on USCYBERCOMs end as a liaison/communications channel (something not always easy to do with the DoD).  

Kent Landfield
Intel Corporation 

Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert@redhat.com

Page Last Updated or Reviewed: August 11, 2016