Future of CVE - Challenges and Developments in Vulnerability Identification

Explore the future of Common Vulnerabilities and Exposures (CVE) in this 45-minute conference talk by Art Manion from Carnegie Mellon University's Software Engineering Institute. Gain insights into the evolution of CVE, including the ID reservation system, counting methodologies, and new services. Examine current issues such as mission focus, transparency, and the challenges posed by cloud services and malicious code. Learn about the Distributed Weakness Filing (DWF) system and its impact on vulnerability reporting. Understand the importance of cross-referencing in CVE and how it contributes to a more comprehensive understanding of cybersecurity threats.

Introduction
Arts background
The spirit of CVE
ID Reservation System
Counting CVEs
CVEs
Number of CVEs
Mitre
New Services
Issues
Mission Focus
Transparency
The Current Model
Cloud Services
Malicious Code
Vulnerability in Malware
DWF
Feedback
CVE
Vxref