Evolving Security Disclosures: The New OASIS Common Security Advisory Framework (CSAF) Technical Committee
During the last few years we have witnessed how the cyber security threat landscape has evolved. The emergence of the Internet of Things combined with recent events have profoundly changed how we protect our systems [...]
Stetson University Students Discover Potential TCP Vulnerability and Use ICASI to Mitigate
Dr. Dan Plante is a very persuasive guy. Plante serves as professor of Computer Science at Central Florida’s Stetson University. In 2008, to promote collaboration between his students and the university and enhance computer security [...]
Why Digital Threats Are a Worldwide Web Problem
On 8-9 September, 2016, OASIS will host Borderless Cyber Europe 2016 at the European Commission Headquarters in Brussels, Belgium. Those who attend the event will be able to participate in discussions on the value of [...]
Cisco bases its new OpenVuln API on ICASI’s CVRF Standard
An eWeek article tells how Cisco’s release of its OpenVuln API, based on the ICASI Common Vulnerability Reporting Framework (CVRF) and other standards, is a further push by the company to make security advisories easier [...]
ICASI helps drive first F2F of the Vulnerability Coordination SIG
This week I’m attending the 2015 FIRST Conference in Berlin (www.first.org) to co-chair a meeting of the newly chartered Vulnerability Coordination SIG. This SIG was born out of issues such as Heartbleed, which highlighted the [...]
Transport Layer Security (TLS) Man-In-The-Middle (MITM) Vulnerability CVE-2009-3555
ICASI is releasing this alert to provide guidance on a protocol-level design flaw allows for an attacker to perform a man-in-the-middle (MITM) attack on sessions protected by Transport Layer Security (TLS) and Secure Sockets Layer [...]