15 min listen
029 Why Does the U.S. Lag Behind China in Vulnerability Reporting?
029 Why Does the U.S. Lag Behind China in Vulnerability Reporting?
ratings:
Length:
20 minutes
Released:
Oct 30, 2017
Format:
Podcast episode
Description
The U.S. National Vulnerability Database, or NVD, is, in part, a collection of security-related reports. Software vulnerabilities are assigned CVE numbers, which stands for common vulnerabilities and exposures, which help track the issues and provide a common reference for referring to a specific flaw. China has a database of their own, the Chinese National Vulnerability Database, or CNNVD.
Our guest today is Dr. Bill Ladd, chief data scientist at Recorded Future. His team noticed that publicly known vulnerabilities were showing up more quickly in China’s database than in the U.S., quite often taking days instead of weeks. This not only has the potential to put U.S. defenders at a disadvantage, it could also give black hats the upper hand.
In this episode we’ll learn why the NVD lags behind the CNNVD, why it matters, and what could be done to correct it.
Our guest today is Dr. Bill Ladd, chief data scientist at Recorded Future. His team noticed that publicly known vulnerabilities were showing up more quickly in China’s database than in the U.S., quite often taking days instead of weeks. This not only has the potential to put U.S. defenders at a disadvantage, it could also give black hats the upper hand.
In this episode we’ll learn why the NVD lags behind the CNNVD, why it matters, and what could be done to correct it.
Released:
Oct 30, 2017
Format:
Podcast episode
Titles in the series (100)
002 Feeding Frenzy: The Inside Scoop on Threat Intelligence Feeds.: 002 Feeding Frenzy: The Inside Scoop on Threat Intelligence Feeds. by Inside Security Intelligence