Making Security Measurable - Supply Chain Risk Management

A Collection of Information Security Community Standardization Activities and Initiatives


Section Contents MSM Directory By Area By Organization By Category Items of Interest Disclaimer Feedback		Home \| About \| MSM Directory of Efforts \| Incubator \| Events & Participation \| Search \| Feedback Supply Chain Risk Management The narrative text description for this page is currently under development. Please check back later. In the meantime, standardization efforts in this area of cyber security include the following: Common Vulnerabilities and Exposures (CVE) Common Weakness Enumeration (CWE) Common Weakness Scoring System (CWSS) Common Weakness Risk Analysis Framework (CWRAF) CWE/SANS Top 25 Most Dangerous Software Errors Software Assurance Metrics and Tool Evaluation (SAMATE) Software Assurance (SwA) Pocket Guide Series Assurance Case (ISO 15026-2) Build Security In (BSI) BACK TO TOP

	This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2007–2013 The MITRE Corporation. MITRE, the MITRE logo, CVE, the CVE logo, OVAL, and the OVAL logo are registered trademarks and the Making Security Measurable logo, CWE, the CWE logo, CAPEC, the CAPEC logo, CEE, the CEE logo, MAEC, the MAEC logo, CWSS, the CWSS logo, CWRAF, the CWRAF logo, CybOX, the CybOX logo, STIX, the STIX logo, TAXII, the TAXII logo, and Recommendation Tracker are trademarks of The MITRE Corporation. All other trademarks are the property of their respective owners. All other trademarks are the property of their respective owners. Contact us: measurablesecurity@mitre.org Page Last Updated: January 09, 2013