You are here: silicon.com > Resources > White Papers > Professions and Industries > Government > Enterprise Architecture

Enterprise Architecture White Papers

Use of the Common Vulnerabilities and Exposures (CVE) Vulnerability Naming Scheme

Overview This document provides guidelines for federal organizations' acquisition and use of security-related information technology (IT) products and services. NIST's advice is provided in the context of larger recommendations regarding security assurance. Most federal departments and agencies use commercial off-the-shelf (COTS) security products and services to track, detect, or counter known vulnerabilities. A problem with many of these products is that different products use different names for the same vulnerabilities. Without a consistent vulnerability terminology, it is difficult to compare the vulnerability coverage of such security products.

Further White Paper Details
Publisher	National Institute of Standards and Technology	File Format	PDF, requires Acrobat Rdr 5
Date Published	September 2002	Downloads	10
Format	White Papers
Topics	Enterprise Architecture

Did you find this white paper useful? 2 out of 3 users found this white paper useful

Case Study: 250 Schools Access Apps via Virtualisation Hub

Publisher:
Microsoft

Building the Virtualized Enterprise with VMware Infrastructure

Publisher:
Vmware

Partners, Not Police: Holding Enterprise Architects Accountable for Successful Project Delivery

Publisher:
IBM

Open Architecture for the Enterprise, Part 1: Architectural Principles of Open Architecture - Be Cheap, Flexible, and Interoperable in 7 Easy Steps

Publisher:
IBM

Tags:
enterprise architecture

Enterprise Architecture Essentials, Part 6: Manageability - Adding Value With a New Quality Attribute

Publisher:
IBM

Tags:
web development and design

Bush signs Homeland Security bill - the details

The law also: requires all federal agencies, including the CIA, the Defense Department and the National Security Agency, to provide the new department with any "information concerning the vulnerability of the infrastructure of the United States...

Channel:
Law & Policy

Microsoft flaw leads to military hack

A previously unknown vulnerability in Microsoft's web software allowed an online attacker to take control of a publicly accessible US Department of Defense server last week, the military confirmed late on Tuesday.

Listed firms face IT security audits

It does say, however, that the certification in the annual report "shall not include specific proprietary information and shall not contain any information identifying, directly or indirectly, any specific vulnerability of the [company's] computer...

Leader: The buck stops with the media

But if a known vendor is willing to put its reputation on the line and claim a vulnerability will cost businesses some exorbitant sum then there is arguably a story there. The media is guilty to some degree for putting out conflicting messages or...

Home Office calls for cybercrime shakeup

Unfortunately, in terms of software vulnerabilities, the lag is moving in the offenders' favour, as the time delay between the discovery of a vulnerability (by various sources) and its exploitation by offenders is narrowing, giving less time for...

VeriSign enterprise security tool comes to Europe

Because they're in different silos, individual teams can't have complete context about whether a vulnerability is an issue outside their remit, or in another part of the organisation. He said: "We have built network context on top of vulnerability...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Enterprise Architecture White Papers

Use of the Common Vulnerabilities and Exposures (CVE) Vulnerability Naming Scheme

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific