- "content": "Shannon Sabens of <a href='https://www.crowdstrike.com/' target='_blank'>CrowdStrike</a> chats with Dave Morse, program coordination lead for the <a href='/'>CVE Program</a>, about the myths and facts of the <a href='/ProgramOrganization/CNAs'>CVE Numbering Authority (CNA)</a> partner onboarding process. Truth and facts about the following topics are discussed: duration and complexity of the onboarding process; the fact that there is no fee to participate; ease of incorporating assigning <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publishing <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> into an organization’s existing coordinated vulnerability disclosure (CVD) processes; availability of automated tools for CNAs; the <a href='/AllResources/CveServices#CveRecordFormat'>CVE JSON Record format</a> and available guidance; role of <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRoot'>Roots</a> and <a href='/ResourcesSupport/Glossary?activeTerm=glossaryTLRoot'>Top-Level Roots</a> and how they help CNAs; importance of CNAs determining their own <a href='/ResourcesSupport/Glossary?activeTerm=glossaryScope'>scopes</a>; disclosure policies; the community aspect of being a CNA and the availability of peer support; the value of CNAs participating in one or more <a href='/ProgramOrganization/WorkingGroups'>CVE Working Groups</a>, especially the <a href='/ProgramOrganization/WorkingGroups#CNAOrganizationOfPeersCOOP'>CNA Organization of Peers (COOP)</a>; and much more!"
0 commit comments