The 10,000 people expected to attend the RSA Conference 2004 this week in San Francisco will be treated to new approaches to the age-old security problems of fixing vulnerabilities and verifying user identities. At last year's RSA Conference, the Organization for the Advancement of Structured Information Standards (OASIS) launched an effort to define application vulnerabilities in a common XML-based format. The goal was not only to have vulnerability-assessment tools define problems the same way but automatically share the information with patch management products and application-layer firewalls so holes can be plugged quickly.
展开▼