CEE Announce - May 16, 2012 (opt-in newsletter from the CEE Web site)

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

CEE Announce - May 16, 2012 (opt-in newsletter from the CEE Web site)


Welcome to the latest issue of the CEE-Announce e-newsletter. This email newsletter is designed to bring recent news about CEE, such as new versions of the language specifications, upcoming conferences, new Web site features, etc. right to your email box. Common Event Expression (CEE) standardizes the way computer events are described, logged, and exchanged. By using CEE’s common language and syntax, enterprise-wide log management, correlation, aggregation, auditing, and incident handling can be performed more efficiently and produce better results than was possible prior to CEE. Details on subscribing (and unsubscribing) to the email newsletter are at the end.


Please feel free to pass this newsletter on to interested colleagues.


Comments: [hidden email]



CEE-Announce e-newsletter/May 16, 2012




1. Feature Story

2. Upcoming Event

3. Also in this Issue

4. Details/Credits + Subscribing and Unsubscribing





CEE Main Topic of Article on "NetworkWorld"


CEE was the main topic of an April 12, 2012 article entitled "We Need Security Standards like MITRE's Common Event Expression (CEE)" on NetworkWorld.com. In the article the author describes CEE as a "Complete standard for security event description and consumption [that] could help with security analytics and cloud computing adoption", and which is "extensible and could work in concert with other standards." The author also notes that CEE is a community effort, with MITRE as moderator and "Cisco, HP/ArcSight, McAfee, NIST, and Microsoft" also participating in the effort.


The author explains both the problems CEE aims to solve regarding the lack of standardization in the audit and event lifecycle that exist today, and how "CEE is designed to address this problem from cradle to grave by defining common event definitions, enumeration, classification, languages, transport protocols, etc. In other words, everything to event/log production to event/log consumption is covered."


The author concludes the article by stating: "Security standards like CEE can go a long way toward expediting common security data standards, wider data exchange, and deeper analysis. For that reason alone, the security technology industry should be much more engaged."




NetworkWorld article - http://www.networkworld.com/community/node/80324


CEE Web site - http://cee.mitre.org/


Participate - http://cee.mitre.org/community/





Registration Now Open for "Security Automation Developer Days 2012" on July 9-13


MITRE Corporation will host the fourth "Security Automation Developer Days" conference on July 9-13, 2012, at MITRE in Bedford, Massachusetts, USA. This five-day conference is technical in nature and will focus on the U.S. National Institute of Standards and Technology's (NIST) Security Content Automation Protocol (SCAP).


The purpose of the event is for the community to discuss SCAP — and those existing standards upon which it is based including Common Configuration Enumeration (CCE), Common Platform Enumeration (CPE), Open Vulnerability and Assessment Language (OVAL), Extensible Configuration Checklist Description Format (XCCDF) — in technical detail and to derive solutions that benefit all concerned parties. All current and emerging SCAP standards are addressed at this workshop.


MITRE first hosted Developer Days in 2005 and has been running them annually ever since. The model for these technical exchanges has since been adopted as the format used by the Security Automation community.


An agenda will be available soon. For registration, lodging, and other conference details, please visit: https://register.mitre.org/devdays/.





* Open-Source "LumberJack" Project to Improve Creation and Standardize Content of Event Logs by Implementing CEE


Read these stories and more news at http://cee.mitre.org/news



Details/Credits + Subscribing and Unsubscribing


Managing Editor: Jon Baker. Writer: Bob Roberge. The MITRE Corporation (www.mitre.org) maintains CEE and provides impartial technical guidance to the CEE Board and Working Group on all matters related to ongoing development of CEE.


To unsubscribe from the CEE-Announce e-newsletter, open a new email message and copy the following text to the BODY of the message "SIGNOFF CEE-Announce-list", then send the message to: [hidden email]. To subscribe, send an email message to [hidden email] with the following text in the BODY of the message: "SUBSCRIBE CEE-Announce-List".


Copyright 2012, The MITRE Corporation. CEE and the CEE logo are trademarks of The MITRE Corporation.


For more information about CEE, visit the CEE Web site at http://cee.mitre.org or send an email to [hidden email]. Learn more about Making Security Measurable at http://measurablesecurity.mitre.org.