|
|
All, In continuation of the Board call discussion regarding broken references, the CVE team created a few examples of how we might deal with broken CVE references in the future. One problem that we were recently pointed to is where a reference
domain was reused by another organization entirely. In these cases, we may want to modify the CVE reference when we become aware of this. A couple of points to keep in mind:
Example #1 – Remove hyperlink for broken references (see example1.jpg) In this example, we simply remove the hyperlink and mark the reference URL in some way that makes it clear it is no longer functioning. We could do this automatically for domains that we know are no longer existing. The point here is that
the previous reference url does have some value for folks who are trying to track something down and removing it entirely would hinder this ability. What we are doing is just keeping the casual user of the CVE web site list from clicking on the link. Example #2 – Add archived calendar URL (see example2.jpg) In the second example, we have included a case where we feel there’s a good likelihood people can find the page archived by following the link. The text in parenthesis would be hyperlinked to a calendar showing when the page appears to
have been archived. In the case of the Wayback Machine, it appears that creating this url is automatable. As mentioned above in the points, I don’t believe it would be a good idea to just change the url to point to something else. We would want to make it
clear when the reference is broken, but also include the archived reference in a form such as this. What are folks thoughts on these examples? Other options? Chris |
Attachment:
example1.jpg
Description: example1.jpg
Attachment:
example2.jpg
Description: example2.jpg