CVE - Editorial Board

About CVE

Terminology
Documents
FAQs
CVE List

About CVE Identifiers
Obtain a CVE Identifier
Search CVE
Search NVD
CVE In Use

CVE Adoption
CVE-Compatible Products
NVD for CVE Fix Information
More . . .
News & Events

Calendar
Free Newsletter
Community

CVE Editorial Board
Sponsor
Contact Us

Search the Site

CVE Community

Editorial Board
Mail List & Meetings Archive
Roles, Tasks, & Qualifications
Adding New Members
Sponsor

CVE In Use

CVE Compatible Products and Services
More . . .

CVE Editorial Board

Current Members | Past Members

The CVE Editorial Board includes numerous information security-related organizations including commercial security tool vendors, members of academia, research institutions, government agencies, and other prominent security experts. Through open and collaborative discussions, the Board identifies which vulnerabilities or exposures are included in the CVE List, then determines the common name and description for each entry.

The MITRE Corporation created the CVE Editorial Board, moderates Board discussions, and provides guidance throughout the process to ensure that CVE serves the public interest. Archives of Board meetings and discussions are available for review on the CVE Web site. Other information security experts will be invited to participate on the Board on an as-needed basis based upon recommendations from Board members. See "Process for Adding New Members to the Editorial Board."

CVE Editorial Board roles and tasks vary by member. Some Board members participate actively in different Board functions. Other members act as observers or liaisons with other areas in the security community. See "CVE Editorial Board Roles, Tasks, and Qualifications."

Current Members

Intrusion Detection Experts

General Dynamics Corporation

Scott Lawler

Other Security Experts

Informed Security Inc.

Adam Shostack (Emeritus)

National Security Agency (NSA)

Independent

Tim Collins

Stu Green

Shawn Hernan

Tom Stracener

Tool Vendors

BindView Corporation

Cisco Systems, Inc.

Andy Balinsky

Kevin Ziese

Computer Associates International, Inc.

Ken Williams

Harris Corporation

Bill Wall

IBM

Jimmy Alderson

Internet Security Systems (ISS)

McAfee, Inc.

Kent Landfield

nCircle Network Security, Inc.

The Nessus Project

Renaud Deraison

NFR Security, Inc.

Symantec Corporation

Craig Ozancin

Mike Prosser

Software Vendors

IBM Corporation

Troy Bollinger

Microsoft Corporation

Red Hat, Inc.

Mark Cox

Sun Microsystems, Inc.

Casper Dik

Network Security Analysts

SANS Institute

Eric Cole

Security Services Vendors

Ernst & Young

IBM Research

Academic / Educational

CERIAS/Purdue University

Pascal Meunier

Gene Spafford

SANS Institute

Alan Paller

UC Davis (University of California, Davis)

Matt Bishop

Incident Response Teams

CanCERT

Ken Armstrong

CERT/CC (Software Engineering Institute, Carnegie Mellon University)

Bill Fithen

DOE-CIAC (U.S. Department of Energy-Computer Incident Advisory Capability)

John Rhodes

Information Providers

National Institute of Standards and Technology (NIST)

Peter Mell

NTBugtraq

Russ Cooper

SecurityFocus/Symantec Corporation

Al Huger

Elias Levy

MITRE

Steve Christey (Moderator)

David Baker

David Mann

MITRE Web Site

Past Members

The individuals listed below are former members of the CVE Editorial Board. We thank them for contributions, especially those with "Emeritus" status who have made particularly significant contributions to the CVE Initiative.

Emeritus

Steve Northcutt

Scott Blake

Andre Frech

Other Contributors

Dana Foat

David LeBlanc

Jim Magdych

Ronson Nguyen

Larry Oliver

Stuart Staniford

Page Last Updated: July 23, 2007