[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
education suggestion
- To: cve-editorial-board-list <cve-editorial-board-list@lists.mitre.org>
- Subject: education suggestion
- From: Kurt Seifried <kseifried@redhat.com>
- Date: Thu, 9 Feb 2017 09:36:12 -0700
- Authentication-results: spf=none (sender IP is 129.83.29.2) smtp.mailfrom=LISTS.MITRE.ORG; mitre.mail.onmicrosoft.com; dkim=none (message not signed) header.d=none;mitre.mail.onmicrosoft.com; dmarc=none action=none header.from=redhat.com;mitre.org; dkim=none (message not signed) header.d=none;
- Delivery-date: Thu Feb 9 15:39:51 2017
- List-help: <mailto:LISTSERV@LISTS.MITRE.ORG?body=INFO%20CVE-EDITORIAL-BOARD-LIST>
- List-owner: <mailto:CVE-EDITORIAL-BOARD-LIST-request@LISTS.MITRE.ORG>
- List-subscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-subscribe-request@LISTS.MITRE.ORG>
- List-unsubscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-unsubscribe-request@LISTS.MITRE.ORG>
- Sender: <owner-cve-editorial-board-list@lists.mitre.org>
- Spamdiagnosticmetadata: 6cdb8bfc89744bd8bfee511e3e65aa05
- Spamdiagnosticoutput: 1:2
So it would appear many people are losing their mind on oss-security, which is not surprising as we haven't really educated people about what's up.
I would suggest we come up with a quick one page education document that covers the new way forwards and why it's better/more sustainable, major points to include:
1) moving forwards it's all about structured data and automation, random email requests is not sustainable
2) MITRE has minted many more CNAs (and continues to do so) so there won't need to be as many requests to MITRE
3) the DWF is in the process of doing the CVE Mentor and multiple CNA roll out, which will be way more efficient/easier then everyone in the OpenSource community having to poke MITRE constantly
--
Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert@redhat.com
Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert@redhat.com
- Follow-Ups:
- RE: education suggestion
- From: "Coffin, Chris" <ccoffin@mitre.org>
- RE: education suggestion
- Prev by Date: CVE Board Meeting Minutes - 25 January 2017
- Next by Date: RE: education suggestion
- Previous by thread: CVE Board Meeting Minutes - 25 January 2017
- Next by thread: RE: education suggestion
- Index(es):
