CVE Board Meeting Agenda - November 14, 2018

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

CVE Board Meeting Agenda - November 14, 2018

Common Vulnerabilities & Exposures

Agenda

2:00 – 2:15: Introductions, action items from the last meeting

  • Previous Action Item: The MITRE CVE team will discuss with their lawyers the impact of GDPR on the CVE project
    • Status: In process
  • Previous Action Item: MITRE to work with Microsoft on starting the automated submission process (similar to IBM’s) and document that process
    • Status: Not done
  • Previous Action Item: Dave Waltermire to set up a conference call to get feedback on the Vulntology
    • Status: Vulntology Google Group established; Doodle Poll on concall sent (7 responses)
  • Previous Action Item: MITRE (Chris C/Jonathan) to send out an email to the Board list to initiate the CNA Rules revision process.
    • Status: In process
  • Previous Action Item: MITRE to draft CNA Rules regarding EOL Scoping issue and Note Field in JSON
    • Status: Not done
  • Previous Action Item: Send out note to Board on CVE Quality WG (MITRE)
    • Status: Not done

 

2:15 – 2:30: Working Groups

  • Strategic Planning – No meeting this week
  • Automation – Chris Johnson
  • Cloud Security Alliance – Kurt Seifried

 

2:30 – 2:45: CNA Update

  • DWF – Kurt Seifried 
  • MITRE – Jonathan Evans
  • JPCERT – Taki Uchiyama

2:45 –3:15: CNA Rule modification discussion: Reserved But Public (RBP) – Jonathan Evans

3:15 – 3:50: Open Discussion Board

3:50 – 4:00: Action items, wrap-up