It's easier to add the text than to discuss whether it's needed... See
http://tools.ietf.org/html/draft-ietf-uta-tls-attacks-04#section-2
By the way, I was surprised that the term "CVE" does not appear in the
Security Glossary (RFC 4949).
Yaron
On 09/28/2014 10:18 PM, Aaron Zauner wrote:
* Leif Johansson <[email protected]> [140928 20:52]:
You mean "explain what CVE numbers are" rather than "explain those CVE
numbers" right?
Is it really necessary to explain what a CVE assignment is in a
document that explicitly deals with security? If so maybe refrain
from writing another paragraph and just refer to a document like
this one: https://cve.mitre.org/cve/identifiers/
Aaron
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
