I want to start this security blog with something called an IAVA.  IAVA stands for information assurance vulnerability alert, an IAVA is an announcement of a computer application software or operating system vulnerability notification in the form of alerts, bulletins, and technical advisories identified by DoD-CERT.  These alerts are compiled and code is written, following the manufactures specs, to close these vulnerabilities in the software suites.  This code is tested by several different independent companies to insure that the specified vulnerabilities have been mitigated.  Once this has been done and it has its final approval this code is packaged up and sent out in to the appropriate facilities to be loaded onto their networks.  Next week I will go into how they are installed and deployed on a large network.