GVIP Summit Speaker: Yogesh Mittal, Red Hat

Published by Olle Johansson on

Yogesh is a PSIRT Manager at Red Hat, where he specializes in the organizational design of global vulnerability ecosystems. His talk is titled: “Designing the Hierarchy of Trust: Governance Lessons from a CVE Root and CNA-LR”

As the EU CRA establishes a continent-wide vulnerability infrastructure, the primary challenge is organizational: how to balance speed with sovereignty across thousands of vendors and national CSIRTs. The risk of creating a centralized bureaucratic bottleneck, a known hurdle for entities like MITRE, is high

Yogesh propose a “Governance Blueprint” for GVIP and the EU, derived from Red Hat’s evolution from a CNA to a Root and CNA-of-Last-Resort (CNA-LR) within the CVE Program. We will explore “what works” and “what doesn’t work” in a federated model. 

Read the agenda here!

Categories: BlogsGVIP Summits

Related Posts

Blogs

GVIP Summit Speaker: Philippe Ombredanne

Organising a conference can be stressful. Fixing the hotel, making decisions about food, microphones, rollups, badges and… so much details. And then we have the speakers. Trying to get the information needed for the agenda, Read more

Alexandre Delaunay, CIRCL
Blogs

GVIP Summit Speaker: Alexandre Dulaunoy

Alexandre is a Security Researcher and Head of CIRCL in Luxembourg. In the GVIP summit, he will talk about the GCVE project and the open-source Vulnerability Lookup project. The Global CVE (GCVE) allocation system is a new, Read more

Andrey Lukashenkov, Vulners
Blogs

GVIP Summit speaker: Andrey Lukashenkov

We are proud to present one of the speakers at the first GVIP Summit: Andrey Lukashenkov from Vulners. Andrey has worked a long time with vulnerabilities and have a lot of insights to share. Talk Read more