Frameworx Home

Application Framework (TAM)

Business Process Framework (eTOM)

Business Process Framework Flows

Information Framework (SID)

Business Metrics High Level

All Diagrams

Frameworx Processes

Frameworx Applications

Information Framework ABEs

Frameworx Metrics

Views

Frameworx Information: SecVulnerabilityScoringSystem

Alternate Name: Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE

Category: [a] Class

Description

A standardized method for vulnerability measurement and severity scoring. \n \nNotes: Three scoring specifications have been created, one for each of the categories of system vulnerabilities defined by NIST SCAP. They include the Common Vulnerability Scoring System (CVSS) which address software flaw vulnerabilies (introduced in 2004/v2 in 2007), the Common Misuse Scoring System (CMSS) which was designed for measuring and scoring misuse vulnerabilities. And the Common Configuration Scoring System (CCSS) which addresses software security configuration issue vulnerabilities.

[a] Class SecVulnerabilityScoringSystem

Issues

  • Information Framework 12.5 Addition

Frameworx Domains


This was created from the Frameworx 16.0 Model


Created from the TM Forum Model Frameworx 16.0.0 on 6/13/2016 at 22:48