Common Weakness Enumeration

file

Toward Precise and Accurate Descriptions of Weaknesses

Submitted by Paul E. Black on Fri, 04/25/2014 - 10:20am. Contributor:

Paul Black

Abstract:

MITRE's Common Weakness Enumeration (CWE) http://cwe.mitre.org/ is a list of several hundred classes of weakness that may be found in software. While it is a huge amount of progress over what was available a decade ago, there is still a lot of work to do. We propose some directions to significantly improve CWEs. These directions come from semantic templates, software fault patterns, and other work.

Common Weakness Enumeration
CWE
Ockham
sound analysis
National HCSS Conference 2014
NIST
U.S. Government
Poster
HCSS'14
HCSS'14: Poster Session

Cyber-Physical Systems Virtual Organization

Read-only archive of site from September 29, 2023.

Common Weakness Enumeration

A Position Study to Investigate Technical Debt Associated with Security Weaknesses

Toward Precise and Accurate Descriptions of Weaknesses