If the goal is around Cloud CVES then it’s a really good idea for us (CVE Board members and CVE Program Secretariate) to be there. I think there is a weird misunderstanding around cloud vulns and scope of CNAs. I think, at least in my conversations with Cloud vendors, that there is a fundamental communication barrier but that we are actually a lot more compatible then THEY often think.
-----Original Message----- From: Landfield, Kent (Enterprise) <kent_landfi...@mcafee.com> Sent: Tuesday, January 11, 2022 10:41 AM To: Art Manion <aman...@cert.org>; Noble, Kathleen <kathleen.no...@intel.com>; CVE Editorial Board Discussion <email@example.com> Subject: Re: CNCF proposed Global Security Vulnerability Summit #835 Sounds good. Thanka! Thank you, Gracias, Grazie, Mahalo, 谢谢, Merci!, Σας ευχαριστώ!, Спасибо!, Bedankt,Danke!, ありがとう, धन्यवाद! -- Kent Landfield McAfee Enterprise +1.817.637.8026 kent_landfi...@mcafee.com On 1/11/22, 9:35 AM, "Art Manion" <aman...@cert.org> wrote: CAUTION: External email. Do not click links or open attachments unless you recognize the sender and know the content is safe. No dates yet, IIUC this is a discussion/proposal, not yet a decision to hold the event. It looks like (and from a side convesation) that one of the goals is more CVE IDs for cloud vulnerabilities, which aligns with the CVE mission. - Art On 2022-01-11 10:27, Landfield, Kent (Enterprise) wrote: > I too would attend. I am wondering what is the real outcome of this event they are trying to achieve. > > Thank you, Gracias, Grazie, Mahalo, 谢谢, Merci!, Σας ευχαριστώ!, Спасибо!, Bedankt,Danke!, ありがとう, धन्यवाद!