Font Size Change

HOMEIT SecurityMeasures for Information Security VulnerabilitiesIPA/ISEC:Vulnerabilities:Filtered Vulnerability Countermeasure Information Tool “MyJVN” English Version Released

PRINT PAGE

IT Security

IPA/ISEC:Vulnerabilities:Filtered Vulnerability Countermeasure Information Tool “MyJVN” English Version Released

Expanding Availability of Vulnerability Countermeasure Information in Japan and Beyond, Aiming to Strengthen International Cooperation

January 15, 2009
>> JAPANESE

Information-technology Promotion Agency, Japan (IPA, Chairman Koji Nishigaki) released the English version of the Filtered Vulnerability Countermeasure Information Tool “MyJVN” on January 15, 2009, which allows users to utilize information in JVN iPedia more efficiently.
(MyJVN: http://jvndb.jvn.jp/en/apis/myjvn/ )

The Filtered Vulnerability Countermeasure Information Tool “MyJVN”(*1) allows users to efficiently gather only relevant information from the vast quantity of data stored in JVN iPedia(*2), the vulnerability countermeasure information database.

JVN iPedia English version has also been released to expand the availability of vulnerability countermeasure information in Japan and abroad, while at the same time aiming to strengthen international cooperation. As of the end of the year 2008, the service is offering approximately 400 vulnerability countermeasure information items in English.

Based on these circumstances, the English version of MyJVN was released on January 15, 2009, in order to assist users to utilize JVN iPedia English version more effectively.

By directly utilizing the information stored in the English version of JVN iPedia, MyJVN allows English-speaking users to gather only relevant information from JVN iPedia in a timely manner.

Also, by bringing to attention the effort put into promotion of vulnerability countermeasure information within Japanese borders, it is hoped that this will bring about an increase in the sharing of information from product developers abroad.

Improve Usability of Vulnerability Countermeasure Information Using Common Standards

MyJVN and JVN iPedia support CPE(*3), CVE(*4) and CWE(*5), the specifications developed centered around the non-profit organization MITRE(*6) with federal aid from the United States government, as well as CVSS(*7) managed by FIRST(*8).

IPA plans to go forward with the adoption of these common standards, maintaining and improving upon the infrastructure that helps users take objective and efficient countermeasures against vulnerabilities.

Footnote

(*1)MyJVN:For more information, please refer to “Filtered Vulnerability Countermeasure Information Tool MyJVN Now Available”
http://www.ipa.go.jp/security/english/vuln/200810_MyJVN_en.html

(*2)JVN iPedia:The Vulnerability countermeasure information database operated by IPA.
(English Version) http://jvndb.jvn.jp/en/
(Japanese Version) http://jvndb.jvn.jp/

(*3)CPE:Common Platform Enumeration.
For more information, please refer to “CPE Overview”:
http://www.ipa.go.jp/security/english/vuln/CPE_en.html

(*4)CVE:Common Vulnerabilities and Exposures
http://cve.mitre.org/index.html

(*5)CWE:Common Weakness Enumeration.
For more information, please refer to “CWE Overview”:
http://www.ipa.go.jp/security/english/vuln/CWE_en.html

(*6)MITRE Corporation:A not-for-profit organization that provides information technology support and research and development to the U.S. government.
http://www.mitre.org/

(*7)CVSS:Common Vulnerability Scoring System.
For more information, please refer to CVSS 2.0.
http://www.first.org/cvss/cvss-guide.html

(*8)FIRST:Forum of Incident Response and Security Team.
http://www.first.org/

Reference

Contact

IT Security Center,
Information-technology Promotion Agency, Japan (ISEC/IPA)
E-mail: