News and Events

MAEC/Making Security Measurable Booth at RSA 2012, February 27 – March 2

MITRE is scheduled to host an MAEC/Making Security Measurable booth at RSA Conference 2012 at the Moscone Center in San Francisco, California, USA, on February 27 – March 2, 2012. Attendees will learn how information security data standards such as MAEC, CybOX, CWE, CWSS, CAPEC, CEE, CVE, CCE, CPE, OVAL, etc., facilitate both effective security process coordination and the use of automation to assess, manage, and improve the security posture of enterprise security information infrastructures.

Members of the MAEC Team will be in attendance. Please stop by Booth 2617 and say hello!

Visit the MAEC Calendar for information on this and other events.

MAEC Language Version 2.0 Now Available

Version 2.0 of the MAEC Language is now available on the Releases page on the MAEC Web site. The previous version of MAEC have been archived, and a detailed report is available that lists specific changes between Version 1.1 and Version 2.0.

Version 2.0 of the MAEC core schema represents a significant set of changes to improve the expressiveness of the schema, particularly in terms of profiling actions performed by malware and the objects that are associated with these actions, and as such is not backwards compatible with MAEC 1.x. MAEC 2.0 imports and utilizes components of version 0.7 of the Cyber Observables Expression (CybOX™) Schema, where appropriate. Specific changes for Version 2.0 are listed in the Previous Version Differences Report section of the MAEC Version 2.0 page.

Please note that all items in this release remain open for discussion and any comments are greatly appreciated. Feedback is welcome on the MAEC Development Group on Handshake, MAEC Discussion List, and/or maec@mitre.org.

MITRE Announces Initial "Making Security Measurable" Calendar of Events for 2012

MITRE has announced its initial Making Security Measurable calendar of events for 2012. Details regarding MITRE’s scheduled participation at these events are noted on the MAEC Calendar page. Each listing includes the event name with URL, date of the event, location, and a description of our activity at the event.

• RSA Conference 2012, February 27-March 2, 2012
• InfoSec World Conference & Expo 2012, April 2-4, 2012
• Black Hat Briefings 2012, July 25-26, 2012
• Information Assurance Expo 2012, August 27-30, 2012
• Black Hat DC 2012, November 1-2, 2012

Other events may be added throughout the year. Visit the MAEC Calendar for information or contact maec@mitre.org to have MITRE present a briefing or participate in a panel discussion about MAEC, CybOX, CWE, CAPEC, CVE, CCE, CPE, CEE, OVAL, Software Assurance, and/or Making Security Measurable at your event.

Page Last Updated: February 07, 2012