Security, Technology, Operations Franklin Donahoe Security, Technology, Operations Franklin Donahoe

The MITRE CVE System

This article provides a comprehensive overview of the Common Vulnerabilities and Exposures (CVE) system, the global standard for identifying and naming cybersecurity vulnerabilities. It covers the history, purpose, and operational structure of CVE, including the roles of MITRE Corporation, CNAs, and the CVE Board. The article also discusses the importance of CVE in the cybersecurity ecosystem, its integration with other standards like NVD and CVSS, and the potential impact of its discontinuation. Additionally, it examines alternative vulnerability identification systems and highlights the ongoing challenges and future directions of the CVE program, including recent funding concerns.

Read More
Strategy, Architecture, Security, Technology, Operations Franklin Donahoe Strategy, Architecture, Security, Technology, Operations Franklin Donahoe

Embracing an Operation-Centric Security Model for Modern Threat Defense

This article discusses the shift from traditional, reactive cybersecurity models focused on Indicators of Compromise (IOCs) to a more proactive, operation-centric approach that emphasizes Indicators of Behavior (IOBs). It explores the limitations of traditional models, the advantages of the operation-centric model, the necessary technology stack, implementation considerations, and the key roles and skills required for successful operation. The article advocates for understanding the "attack narrative" and utilizing frameworks like MITRE ATT&CK to proactively defend against modern cyber threats.

Read More