ADVL vs VulnXML

[<securitydigest () hush com>]

I just noticed on OASIS the newly proposed Application Vulnerbility Description
Language.

http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=avdl

How does this differ from OWASP VulnXML (http://www.owasp.org/vulnxml/)
?

I don't see anyone from OWASP on the committee which is kinda interesting
given they invented the concept over a year ago and have a database running
coming along so I hear. I hope this won't be a case of a few vendors
trying to take thought leadership for something the open source community
has already done!



Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2 

Big $$$ to be made with the HushMail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427