Vulnerabilities Checklists Product Dictionary Impact Metrics Data Feeds Statistics
Home SCAP SCAP Validated Tools SCAP Events About Contact Vendor Comments
Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status

NVD contains:

40611 CVE Vulnerabilities
129Checklists
191 US-CERT Alerts
2369 US-CERT Vuln Notes
2517OVAL Queries

Last updated:  02/09/10

CVE Publication rate:

11 vulnerabilities / day
Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index
Vulnerability Workload Index: 5.87
About Us

NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security’s National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

Federal Desktop Core Configuration Implementers Workshop

Below is a list of presentations from the 2008 Federal Desktop Core Configuration Implementers Workshop. If any presenters from the workshop would like to have their presentation listed please send it to paul.cichonski@nist.gov. A list of presentations from the 2007 Security Automation Conference can be found here: http://nvd.nist.gov/presentations.cfm

Presentations
Presenter(s)Presentation
Stephen Quinn - NIST FDCC History & Current Status
Lee Dudek - DOI Agency Implementation Approaches - DOI
Bill Corrington - DOI Agency Implementation Approaches - DOI Continued
Jim Donohue - USDA Agency Implementation Approaches - USDA
Karen Scarfone - NIST Overview of Planned FDCC and SCAP Related Publications
Drew Buttner - MITRE Enhancing the FDCC Content
Dave Dixon - Microsoft FDCC Challenge Settings & Implementation
Peter Mell - NIST NIST SCAP Product Validation Program Status & FDCC Reporting Format
Mike Smith - DHS Extending FDCC/SCAP into Information System Security Line of Business
Kevin Stine - NIST FISMA, SP 800-53, and FDCC

Disclaimer Notice & Privacy Statement / Security Notice

Send comments or suggestions to nvd@nist.gov

NIST Computer Security Resource Center (CSRC)

NIST is an Agency of the U.S. Commerce Department

Full vulnerability listing