CWE - Training Materials

Home > CWE/SANS Top 25 > Training Materials

CWE List
Full Dictionary View
Development View
Research View
Reports

About
Sources
Process
Documents
FAQs

Community
SwA On-Ramp
T-Shirt
Discussion List
Discussion Archives

Scoring
CWSS
CWRAF
CWE/SANS Top 25

Compatibility
Requirements
Coverage Claims Representation
Compatible Products
Make a Declaration

News
Calendar
Free Newsletter

Contact Us
Search the Site

Section Contents
Current CWE/SANS Top 25
2009 CWE/SANS Top 25
Supporting Quotes
Contributors
On the Cusp
Change Log
Top 25 Process
Top 25 Q & A
Training Materials
Top 25 Archives

Training Materials

The Evolution of the CWE Development and Research Views

This paper explains the evolution of the two main views in CWE, CWE-699 (Development Concepts) and CWE-1000 (Research Concepts). It identifies the methodologies used for constructing the views, including the emphasis on providing clear names and descriptions.

HTML

A Status Update: The Common Weaknesses Enumeration

NIST Static Analysis Summit, Gaithersburg, MD Jun 29, 2006.

PDF (139 KB)

The Case for Common Flaw Enumeration

This technical white paper discusses the reasons and rational behind the CWE initiative. PDF document. November 8, 2005 - Robert A. Martin and Steve Christey (MITRE), and Joe Jarzombek (DHS) (NIST Workshop on "Software Security Assurance Tools, Techniques, and Methods", Long Beach, CA., USA)

PDF (287 KB)

Page Last Updated: September 12, 2011


	CWE is co-sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2012, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us