2608, 2016

Stetson University Students Discover Potential TCP Vulnerability and Use ICASI to Mitigate

August 26th, 2016|

Dr. Dan Plante is a very persuasive guy. Plante serves as professor of Computer Science at Central Florida’s Stetson University. In 2008, to promote collaboration between his students and the university and enhance computer security [...]

1512, 2015

Cisco bases its new OpenVuln API on ICASI’s CVRF Standard

December 15th, 2015|

An eWeek article tells how Cisco’s release of its OpenVuln API, based on the ICASI Common Vulnerability Reporting Framework (CVRF) and other standards, is a further push by the company to make security advisories easier [...]

1506, 2015

ICASI helps drive first F2F of the Vulnerability Coordination SIG

June 15th, 2015|

This week I’m attending the 2015 FIRST Conference in Berlin ( to co-chair a meeting of the newly chartered Vulnerability Coordination SIG.  This SIG was born out of issues such as Heartbleed, which highlighted the [...]

406, 2015

Transport Layer Security (TLS) Man-In-The-Middle (MITM) Vulnerability CVE-2009-3555

June 4th, 2015|

ICASI is releasing this alert to provide guidance on a protocol-level design flaw allows for an attacker to perform a man-in-the-middle (MITM) attack on sessions protected by Transport Layer Security (TLS) and Secure Sockets Layer [...]

406, 2015

ICASI Members Release Domain Name System (DNS) Advisories

June 4th, 2015|

ICASI is aware of an industry-wide vulnerability regarding the Domain Name System (DNS). ICASI members have released advisories for their affected products, and ICASI encourages customers to review those advisories and deploy any necessary updates [...]

406, 2015

Wi-Fi Protected Access (WPA) Encryption Vulnerability

June 4th, 2015|

ICASI is aware of reports that describe a way to partially crack the Wi-Fi Protected Access (WPA) encryption standard used to protect data on many wireless networks. The documented issue affects encryption solutions that implement [...]