| Information Assurance Vulnerability Alert |
Article Index for Information |
Website Links For Information |
Information AboutInformation Assurance Vulnerability Alert |
| CATEGORIES ABOUT INFORMATION ASSURANCE VULNERABILITY ALERT | |
| united states department of defense | |
| SHOPPER'S DELIGHT | |
|
Information Assurance Vulnerability Alerts Sometimes referred to as IAV's are Computer Application Software or Operating System Vulnerabilities , determined by NetDefense or DoD-Cert, a division of the Global Network Operations Center, of the JTF-GNO . These selected vulnerabilaties are the mandated baseline, or minimum configuration of all hosts residing on the GIG framework. DoD-Cert analyzes each Vulnerability released by mitre.org as a CAN or CVE and determines if is necessary or beneficial to the DoD to release it as an IAV. There are three different types of IAV's IAV-A's or Information Assurance Vulnerability Alerts IAVA's are considered "High-Risk/Threat" vulnerabilities, and usually are mandated compliance within 30 days. IAV-B's or Information Assurance Vulnerability Bulletins IAVB's are considered "Medium-Risk/Threat" vulnerabilities. IAV-T's or Information Assurance Vulnerability Technical Advisories IAVT's are considered "Low-Risk/Threat" vulnerabilities. A complete listing of IAVA's can be found (if coming from a .mil Top Level Domain ) at http://www.cert.mil |