Scope on Application Vulnerability Description Language
by Berislav Kucan - Thursday, 25 November 2004.
The Application Vulnerability Description Language (AVDL) is a rather new security interoperability standard within the Organization for the Advancement of Structured Information Standards (OASIS) that was first proposed in April 2003 by several leaders within the application security space. AVDL creates a uniform way of describing application security vulnerabilities using XML.

Caleb Sima, SPI Dynamics CTO, talks to Help Net Security about this interesting web application security topic. Some of the questions you can get answers to by listening to the audio include:
  • When and why was AVDL introduced
  • Who should care about AVDL
  • Is there a need for similiar concepts or AVDL is the thing
  • What vendors participate in AVDL
  • Would other vendors benefit from participating in AVDL
  • Is AVDL a success at this point
The audio session is 8:17 minutes long and is streamed in Flash format. If you can't see the controls below, download Flash here.

Spotlight

Why vulnerability disclosure shouldn’t be a marketing tool

Brian Honan, CEO at BH Consulting, talks about a recent vulnerability disclosure trend – a trend that he believes may ultimately cause more harm than good: security vendors using vulnerability disclosure as a marketing tool with the goal of enhancing their company’s bottom line.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Wed, Jul 1st
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //