ITSVP: Maintaining valid entries for Technologies global value lists.
The Vulnerability Library has fields for CPE OS Technologies, CPE Application Technologies, and CPE Hardware Technologies. The NVD Datafeed parses the CPEs out of the NVD xml and chooses the correct value for the related CPE field in the Vulnerability Library. In Devices we define technologies using the same ITSVP Technologies value lists. When all of this is done correctly, we can track the vulnerabilities for each Device.
Let's say I have a Device with a CPE technology that is not available in the ITSVP global values lists on my Archer system. How do I add that technology correctly? What are the best practices for updating those values lists so that future CPE hits in the NVD can be properly matched to Technologies? In other words, how do I prevent duplicate entries in the technologies values lists while multiple sources are updating them?
- Community Thread
- Forum Thread
- global value list
- RSA Archer
- RSA Archer Suite
- vulnerability library