[ main >> VULDEF ]

VULDEF: The VULnerability Data publication and Exchange Format data model


The members of the JVNRSS Feasibility Study Team:

Masato Terada (IPA, JPCERT/CC)
JVN Working Group (JPCERT/CC, IPA)


Latest Version: V1.2-R1 (2008-04-28) http://jvnrss.ise.chuo-u.ac.jp/jtg/vuldef/
V1.1-R1 (2007-02-08) http://jvnrss.ise.chuo-u.ac.jp/jtg/vuldef/1.1_R1/
V1.0-R6 (2006-04-30) http://jvnrss.ise.chuo-u.ac.jp/jtg/vuldef/1.0_R6/
V1.0-R5 (2004-08-01) http://www.doi.ics.keio.ac.jp/%7Eterada/vuldef040801.pdf
V1.0-R4 (2004-06-11) http://www.doi.ics.keio.ac.jp/%7Eterada/vuldef040611.pdf
V1.0-R3 (2004-03-09) http://www.doi.ics.keio.ac.jp/%7Eterada/vuldef040309.pdf
V1.0-R2 (2004-02-26) http://www.doi.ics.keio.ac.jp/%7Eterada/vuldef040226.pdf
V1.0-R1 (2004-02-02) http://www.doi.ics.keio.ac.jp/%7Eterada/vuldef040202.pdf
V1.0-R0 (2004-01-12) http://www.doi.ics.keio.ac.jp/%7Eterada/vuldef040112.pdf


Comments should be directed to the JVN Working Group.


Copyright © 2006-2008 by the Authors.

1. Overview

"VULDEF(The VULnerability Data publication and Exchange Format data model)" is intended to be a format for the security information published by the vendors or the Computer Security Incident Response Teams (CSIRTs). Assuming widespread adoption of the VULDEF by the community, an organization can potentially benefit from the increased automation in the processing of security advisory data, since the commitment of vulnerability handling to parse free-form textual document will be reduced.

2. XML Schema


3. Syntax


4. Examples

5. Resources

6. Acknowledgements

The members of JVN Working Group for all their continued discussion and input.