What is AVDL?
The Application Vulnerability Description Language (AVDL) is a new security interoperability standard being proposed by members of the OASIS AVDL Technical Committee. The goal of AVDL is to create a uniform way of describing application security vulnerabilities using XML. • What is the business problem AVDL is addressing? AVDL will address the business problem of how companies manage ongoing application security risk on a day-to-day basis. Application security, by definition, is far more complex than network security. To begin with, each application is entirely unique. With the wide adoption of web-based technologies, applications have also become far more dynamic, often changing daily, or even hourly. To make matters worse, enterprises must deal with a constant flood of new security patches from their application and infrastructure vendors. To address this growing problem, companies have begun deploying best-of-breed security products to discover application vulnerabilities, block app
