NIST official details efforts to improve automation for vulnerability management through new framework

The National Institute of Standards and Technology is exploring how automation could be used for vulnerability management to improve the process for describing cybersecurity weaknesses, according to an agency official leading an effort to build resources around a new framework.

“When you're developing an AI system, you need to train models. To train the models, you need to have comprehensively labeled data,” NIST computer scientist Irena Bojanova told Inside Cybersecurity. Bojanova is the author of NIST’s “Bugs Framework” released...