[scap_interest] Software Vulnerability Mitigation Automation - IVIL v1.0

Jerome Athias <jerome@netpeas.com> Thu, 16 February 2012 01:11 UTC

Return-Path: <jerome@netpeas.com>
X-Original-To: scap_interest@ietfa.amsl.com
Delivered-To: scap_interest@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D0DA421E8016 for <scap_interest@ietfa.amsl.com>; Wed, 15 Feb 2012 17:11:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.094
X-Spam-Level:
X-Spam-Status: No, score=-0.094 tagged_above=-999 required=5 tests=[AWL=-0.095, BAYES_50=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4EDFiXMyJs3c for <scap_interest@ietfa.amsl.com>; Wed, 15 Feb 2012 17:11:44 -0800 (PST)
Received: from relay3-d.mail.gandi.net (relay3-d.mail.gandi.net [217.70.183.195]) by ietfa.amsl.com (Postfix) with ESMTP id EFCFD21E800E for <scap_interest@ietf.org>; Wed, 15 Feb 2012 17:11:43 -0800 (PST)
X-Originating-IP: 217.70.178.130
Received: from mfilter1-d.gandi.net (mfilter1-d.gandi.net [217.70.178.130]) by relay3-d.mail.gandi.net (Postfix) with ESMTP id B4CC1A808C for <scap_interest@ietf.org>; Thu, 16 Feb 2012 02:11:32 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at mfilter1-d.gandi.net
Received: from relay3-d.mail.gandi.net ([217.70.183.195]) by mfilter1-d.gandi.net (mfilter1-d.gandi.net [10.0.15.180]) (amavisd-new, port 10024) with ESMTP id Wir4ov9fqusJ for <scap_interest@ietf.org>; Thu, 16 Feb 2012 02:11:30 +0100 (CET)
X-Originating-IP: 41.137.25.183
Received: from [127.0.0.1] (dynamic.casap2-183-25-137-41.wanamaroc.com [41.137.25.183]) (Authenticated sender: jerome@netpeas.com) by relay3-d.mail.gandi.net (Postfix) with ESMTPSA id 75B90A804B for <scap_interest@ietf.org>; Thu, 16 Feb 2012 02:11:28 +0100 (CET)
Message-ID: <4F3C57D9.8020405@netpeas.com>
Date: Thu, 16 Feb 2012 01:11:53 +0000
From: Jerome Athias <jerome@netpeas.com>
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:10.0.1) Gecko/20120208 Thunderbird/10.0.1
MIME-Version: 1.0
To: scap_interest@ietf.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable
Subject: [scap_interest] Software Vulnerability Mitigation Automation - IVIL v1.0
X-BeenThere: scap_interest@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Discussion List for IETFers interested in the Security Content Automation Protocol \(SCAP\)." <scap_interest.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scap_interest>, <mailto:scap_interest-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/scap_interest>
List-Post: <mailto:scap_interest@ietf.org>
List-Help: <mailto:scap_interest-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scap_interest>, <mailto:scap_interest-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Feb 2012 01:11:49 -0000

As mentioned in the U.S. "INTERNATIONAL STRATEGY FOR CYBERSPACE"[1] 
document,
we need "interoperable and secure technical standards, determined by 
technical experts".

I would like to introduce my vision of "Software Vulnerability 
Mitigation Automation"
via IVIL v1.0 via a (incomplete) Conceptual Map.

Requirements: ~15 minutes of your time, a headset and the Boléro

https://corevidence.com/research/vulnerability_interoperability_ivil_v1.jpg

(I extracted some links, please see below)



i = x2ivil + ivil2x
where "i" is interoperability and "x" a software (vulnerability 
scanner,... + waf, virtual patching system, ...)

What do you think?

Thank you.
Best regards,

Jerome Athias - NETpeas
VP, Director of Software Engineer
Palo Alto - Paris - Casablanca
http://www.netpeas.com

"The computer security is an art form. It's the ultimate martial art."



[1]   
  http://www.whitehouse.gov/blog/2011/05/16/launching-us-international-strategy-cyberspace
IVIL-XML   
  http://www.cupfighter.net/index.php/2010/10/ivil-an-xml-schema-to-exchange-vulnerability-information/
ThreadFix    http://code.google.com/p/threadfix/