search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

DevSecOps for the Community: Building, Provisioning, and Deploying CVE's Infrastructure and Services

Presentation
By
This session was presented by Shane T. Ficorilli of MITRE at DevSecOps Days Pittsburgh, held virtually May 11, 2023.
Publisher

Software Engineering Institute

Subjects

Watch

Abstract

In this session, we’ll be looking at the systems that support the CVE community. Over the past two years the CVE program has deployed the new CVE-Services API, as well as the new beta cve.org website. With the support of the community, MITRE has worked to adopt and implement DevSecOps methodologies and practices that have been a vital asset in building, provisioning, and deploying these systems that are used by CVE Numbering Authorities (CNAs), worldwide.

Some of the topics that we will discuss include

  • The purpose of the CVE program
  • What is CVE-Services and how does it make its way from GitHub to production?
  • DevSecOps culture in the CVE program

SHARE
Download PDF
Part of a Collection

DevSecOps Days Pittsburgh 2023
Ask a question about this Presentation