NIST is hosting a one-day workshop on hardware representation in the Common Platform Enumeration (CPE) and on how the Common Vulnerability Scoring System (CVSS) applies to hardware. The workshop will discuss NIST's plans and potential updates in these areas and gather community feedback from hardware vendors, vulnerability analysts, security-tool developers, National Vulnerability Database (NVD) users, and standards participants across government and industry.
Topics will include the current state of hardware coverage in NVD and CPE, plans and potential changes to CPE for hardware representation, CVSS considerations specific to hardware, and how the community can engage with this work going forward. The workshop is part of NIST's CHIPS Metrology and Computer Security Division (CSD) effort to improve how hardware products are identified and how their vulnerabilities are scored.
The event will be held at the NIST National Cybersecurity Center of Excellence (NCCoE) in Rockville, Maryland, with a virtual attendance option.
For more information about the National Vulnerability Database, visit the National Vulnerability Database. For more information about NVD CPE, please visit the NVD CPE page. For CPE development and access to the public comments forum, contact cpe-dev [at] list.nist.gov (cpe-dev[at]list[dot]nist[dot]gov).
If you have questions regarding the workshop, please contact cpe-workshop [at] nist.gov (cpe-workshop[at]nist[dot]gov).
Agenda coming soon
Visitor Access Requirement:
*Use of apps, physical photocopies, and/or digital screenshots of your ID, Passport or Green card will not be accepted.
Created May 20, 2026, Updated May 21, 2026
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。