CWE/CAPEC Working Groups (WGs) and Special Interest Groups (SIGs)
Hardware CWE Special Interest Group (HW CWE SIG)
The HW CWE SIG offers a forum for researchers and representatives from organizations operating in hardware design, manufacturing, and security to interact, share opinions and expertise, and leverage each other’s experiences in supporting the continued growth and adoption of CWE as a common language for defining hardware security weaknesses. The objective of the HW CWE SIG is to establish a stakeholder community for discussing HW CWE content and explore further cross-organizational collaboration opportunities.
ICS/OT Special Interest Group (ICS/OT SIG)
The ICS/OT SIG offers a forum for researchers and technical representatives from organizations operating in industrial control systems (ICS) and operational technology (OT) design, manufacturing, and security to interact, share opinions and expertise, and leverage each other’s experiences in supporting continued growth and adoption of CWE as a common language for defining ICS/OT security weaknesses and their associated patterns of attack.
REST API Working Group (REST API WG)
The objective of the REST API WG is to ease the interface between security software and hardware architects, EDA tool developers, verification engineers concerned about mitigating security risks in their products; and the databases themselves. A new RESTful API will be designed.
User Experience Working Group (UEWG)
The UEWG is working to develop strategies and solutions for improving how CWE weaknesses and CAPEC attack patterns are presented, optimizing CWE and CAPEC content, and educating end users.