Following the termination of Mitre's contract to manage the CVE Programme, a group of vulnerability experts have established the CVE Foundation to ensure the program's future stability and viability. The CVE Programme, which has served as a vital resource for cybersecurity over the past 25 years, raised concerns regarding its dependence on a single government entity. The foundation aims to transition CVE to an independent non-profit, allowing it to deliver high-quality vulnerability identification and support for cybersecurity professionals worldwide.
"CVE, as a cornerstone of the global cyber security ecosystem, is too important to be vulnerable itself," said Kent Landfield, an officer of the foundation.
The CVE Foundation's founders want to ensure the continuity, viability and stability of the 25-year-old CVE Programme, which has been operated as a US government-funded initiative.
Cyber security professionals around the globe rely on CVE identifiers and data as part of their daily work - from security tools and advisories to threat intelligence and response.
The founders said that while they hoped today would never come, they have spent the past year working diligently in the background to create a strategy to transition the CVE system into a dedicated, independent non-profit.
Collection
[
|
...
]