Global Security Database

The Global Security Database is a new Working Group project from the Cloud Security Alliance meant to address the gaps in the current vulnerability identifier space.

The world of vulnerability identifiers has changed drastically in the last 20 years while the infrastructure and management of public and private vulnerability data have changed very little. This has created a sizable gap between the current needs of industry and the ability of existing projects to be effective.

Joining

There is a mailing list at https://csaurl.org/list-gsd for general and technical discussion.

The CSA Circle Community is available at https://csaurl.org/circle-gsd.

We are also on GitHub at https://github.com/cloudsecurityalliance/gsd-database and https://github.com/cloudsecurityalliance/gsd-project filing issues in gsd-project is a great way to capture anything specific you want to bring up.

Requesting a GSD ID

Editing a GSD entry

  • To edit a GSD entry simply go to https://edit.globalsecuritydatabase.org/ and enter the GSD ID and hit edit. Please note it’s not fully functional yet, it will file an issue with the updates, we are still working on the robot to process these issues automatically

This list is also accessible via the URL https://csaurl.org/gsd-quick-links.

Working Group Recurring Meetings

The GSD Working Group meets every other Monday, from 9am-10am Pacific (12pm-1pm Eastern). To join, please see the “Virtual Meetings” section on the working group calendar page.