Germany - Development of industry-specific software

Description

The aim of the ISDuBA project (Internal System for Downloading and Evaluating Advisories) is to create software for the automated downloading and evaluation of security advisories and documents that comply with the CSAF 2.0 standard. With the help of the project the existing tools for CSAF shall be extended on the one hand and the current workflow shall be facilitated on the other hand. In addition, decisions regarding the relevance of an advisory are to be simplified (e.g., through filter options regarding the criticality of vulnerabilities or specific components) and further actions (e.g., applying patches) are to be documented. This is the only way to significantly reduce manual efforts in the BSI. By publishing it as open source software, the source code can be used, extended and adapted to specific needs.
see point II.1.4

Opportunity closing date

19 September 2023

Value of contract

to be confirmed