[scap_interest] CYBEX reference documents - deliverables for the ITU-T December meeting

[Tony Rutkowski <tony@yaanatech.com>]

Dear all,

Please find attached the initial CYBEX
deliverables for review and requested
adoption at the ITU-T SG17 meeting in four
weeks in Geneva.  Following a rapid global
polling process that includes every ITU
country in the world and their industries,
these will become adopted Recommendations
in April, translated into Arabic, Chinese,
French, Spanish, & Russian languages, and
made available with a persistent URL and
downloadable for free from a trusted EVcert
identified host.  Going forward, the
provisions will be evolved as necessary
to remain current and synced with the
respective user communities.

This ensemble includes the basic CYBEX framework
(X.1500) and two key initial capability
specifications for CVE (X.1520) and CVSS
(X.1521).  Also provided are the report
of the continuing management group for
the effort known as the CYBEX Correspondence
Group, and the roadmap/workplan for 2011-2012.

This is a landmark of sorts, that represents
the considerable effort over the past 18 months
and combined vision by a great many people
from around the globe - especially the
specification source communities.  Some are
at the Beijing scap_interest BOF.

The IETF activity for security tool automation
implementations is one of many such initiatives
now occurring in diverse standards bodies.  We
all gain by our constant collaboration in these
efforts, and look forward to doing so as the
IETF moves forward, and will do everything possible
to share our work and provide involvement.  The
ITU's recent action to provide low-cost membership
to academic institutions will also be helpful in
promoting openness and direct access.

best regards,
tony  (ITU-T Q.4/17 - Cybersecurity - Rapporteur)