CWE Ontology

Authors

  • Vladimir Dimitrov Faculty of Mathematics and Informatics, Sofia University "St. Kliment Ohridski", Bulgaria

DOI:

https://doi.org/10.55630/sjc.2022.16.39-56

Keywords:

Cybersecurity, Weakness, Semantic Web, Ontology

Abstract

CWE is a community-supported database of known weaknesses. It is under permanent update and development. MITRE Corporation hosts this database. It consists of several viewpoints structured at several abstract levels.

CWE database is the base of CWE ontology. It redefines weaknesses in terms of the Semantic Web. This ontology is a part of ontology ecosystem developed to capture cybersecurity knowledge on known vulnerabilities, weaknesses, and attacks patterns.

CWE ontology classifies CVE/NVD vulnerabilities. It is useful for research and investigation on new vulnerabilities and weaknesses using reasoners. In addition, CWE is useful for cybersecurity incident forensic investigations, software acquisition and development.

Downloads

Published

2023-02-28

Issue

Vol. 16 No. 1 (2022)

Section

Articles