The mission of the CWE/CAPEC Board is to set and promote the goals and objectives of the CWE/CAPEC Program to ensure the ongoing adoption, coverage, and quality of Common Weakness Enumeration (CWE™)/Common Attack Pattern Enumeration and Classification (CAPEC™).
The Board operates according to the CWE/CAPEC Board Charter and the CWE/CAPEC Professional Code of Conduct. Members of the CWE/CAPEC Board include Technical Implementers that provide input and guidance regarding the creation, design, review, maintenance, and applications of CWE/CAPEC entries; Subject Matter Experts (SMEs) who are domain experts in weakness and/or attack pattern fields and represent a significant constituency related to, or affected by, CWE/CAPEC; and Advocates who actively support and promote CWE/CAPEC throughout the community in a highly visible and responsible manner.
Through open and collaborative discussions, Board members provide critical input regarding domain coverage, coverage goals, operating structure, and strategic direction.
All Board discussions are archived for the community:
Paul Anderson, GrammaTech
Bill Curtis, Consortium for IT Software Quality (CISQ)
Chris Eng, Veracode
Jason Fung, Intel
Robin Gandhi, University of Nebraska Omaha
Jay Gazlay, Cybersecurity and Infrastructure Security Agency (CISA)
Alex Hoole, OpenText
Joe Jarzombek, Synopsys
Jason Lam, SANS
Chris Levendis, MITRE
Jason Oberg, Cycuity
Kurt Seifried, Cloud Security Alliance
Alec Summers, MITRE (CWE/CAPEC Board Moderator)
Chris Turner, National Institute of Standards and Technology (NIST)
Jeremy West, Red Hat, Inc.
Past Board Members
Andrew van der Stock