Chapter 7. Vulnerability patterns as a new assurance content

Keywords

Keywords vulnerability

vulnerability pattern

standard protocol for exchanging system facts

knowledge discovery metamodel

Common Weakness Enumeration (CWE)

Abstract

The NIST SCAP Ecosystem successfully addresses the exchanges of knowledge for vulnerability management for the known vulnerabilities in commercial off-the-shelf software products. A larger ecosystem for assurance beyond the current SCAP has to involve machine-readable vulnerability patterns as content that can be consumed by code analysis tools and web scanning tools.

In order for cybersecurity knowledge to be systematically collected and accumulated, it should be unlocked from the tools and distributed from the few ...

Get System Assurance now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

System Assurance by Nikolai Mansourov, Djenana Campara

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly