Increased CVE Counts: A Positive Indicator of a Maturing Security Ecosystem
The number of reported vulnerabilities of a product is sometimes cited as a measure of its relative security. In this article, we will dispel the notion that the count of Common Vulnerabilities and Exposures (CVEs) is [...]
The PSIRT Services Framework: Helping the Industry Protect the Ecosystem
At Cisco, our leadership made the decision over twenty four years ago that we would clearly publicly communicate security vulnerabilities or other issues that could potentially expose customers to risk. This is when the Cisco [...]
ICASI Welcomes New Members – Honeywell & BlackBerry
The Industry Consortium for Advancement of Security on the Internet (ICASI) welcomes new members Honeywell International and BlackBerry Limited into the consortium. In this increasingly connected ecosystem, industry leaders are banding together to better coordinate [...]
Perspective About the Recent WPA Vulnerabilities
On October 16th, Mathy Vanhoef and Frank Piessens, from the University of Leuven, published a paper disclosing a series of vulnerabilities that affect the Wi-Fi Protected Access II (WPA2) protocol. These are protocol-level vulnerabilities that affect wireless [...]
Evolving Security Disclosures: The New OASIS Common Security Advisory Framework (CSAF) Technical Committee
During the last few years we have witnessed how the cyber security threat landscape has evolved. The emergence of the Internet of Things combined with recent events have profoundly changed how we protect our systems [...]
Stetson University Students Discover Potential TCP Vulnerability and Use ICASI to Mitigate
Dr. Dan Plante is a very persuasive guy. Plante serves as professor of Computer Science at Central Florida’s Stetson University. In 2008, to promote collaboration between his students and the university and enhance computer security [...]