Making of the CWE Top-25, 2010 Edition
Pascal Meunier - Purdue University
Mar 10, 2010Size: 444.7MB
Download: MP4 Video
Watch in your Browser Watch on YouTube
AbstractFor the second time, MITRE's Common Weakness Enumeration project has released a Top-25 list. However, this year's is a much more sophisticated document, created using a systematic and more rigorous approach. It contains several sections and tables as well as profiles, and isn't only a list. I will
explain what the CWE is, what the purpose of the Top-25 is, how it was created,
which problems it faced and which it still faces, how it has been improved
since last year, and how you can use it.
About the SpeakerPascal Meunier received his B.S. in Physics in 1986 from Laval University, Ph.D. in Biophysics from the University of Québec in 1990, and M.Sc. in computer science from Purdue in 2000. Dr. Meunier has since worked at CERIAS on projects such as the Cassandra system (https://cassandra.cerias.purdue.edu), vulnerabilities of PDAs in a wireless environment, and vulnerability analysis (https://coopvdb.cerias.purdue.edu). He has been on the board of editors of the CVE at MITRE since 1999, and is adjunct faculty in Norwich University's program for their online Masters in Information Assurance.
The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.