Scope on Application Vulnerability Description Language
by Berislav Kucan - Thursday, 25 November 2004.
The Application Vulnerability Description Language (AVDL) is a rather new security interoperability standard within the Organization for the Advancement of Structured Information Standards (OASIS) that was first proposed in April 2003 by several leaders within the application security space. AVDL creates a uniform way of describing application security vulnerabilities using XML.
Caleb Sima, SPI Dynamics CTO, talks to Help Net Security about this interesting web application security topic. Some of the questions you can get answers to by listening to the audio include:
When and why was AVDL introduced
Who should care about AVDL
Is there a need for similiar concepts or AVDL is the thing
What vendors participate in AVDL
Would other vendors benefit from participating in AVDL
Is AVDL a success at this point
The audio session is 8:17 minutes long and is streamed in Flash format. If you can't see the controls below, download Flash here.
Posted on 27 August 2014. | Tucked away from the glamour of the vendor booths and the large presentation rooms filled with rockstar sessions, was the Arsenal - a place where developers were able to present their security tools and grow their community.
Posted on article.php?id=2107 | Stuart McClure, CEO at Cylance, talks about how the information security industry has evolved when it comes to detecting bad guys, but it's being mostly reactive and not proactive.
Posted on 25 August 2014. | The Center for the Study of the Presidency & Congress (CSPC) launched a project to bring together representatives from the Executive Branch, Congress, and the private sector to discuss how to better secure the U.S. electric grid.
Posted on 25 August 2014. | The importance of information security and technology risk management continues to grow, but many risk and security professionals continue to struggle with non-IT executive communication.