CWE

Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that can become vulnerabilities

New to CWE? click here!
CWE Most Important Hardware Weaknesses
CWE Top 25 Most Dangerous Weaknesses
Home > Community >  
ID

Working Groups (WGs) and Special Interest Groups (SIGs)

Both CWE Program and Community WGs and SIGs are listed below. You may request to join any WG or SIG listed on this page by emailing cwe@mitre.org. We look forward to hearing from you!


CWE Program

Hardware CWE Special Interest Group (HW CWE SIG)

The HW CWE SIG offers a forum for researchers and representatives from organizations operating in hardware design, manufacturing, and security to interact, share opinions and expertise, and leverage each other’s experiences in supporting the continued growth and adoption of CWE as a common language for defining hardware security weaknesses. The objective of the HW CWE SIG is to establish a stakeholder community for discussing HW CWE content and explore further cross-organizational collaboration opportunities.

Fact Sheet | GitHub Repository | Request Information/Join


ICS/OT Special Interest Group (ICS/OT SIG)

The ICS/OT SIG, which collaborates via an email discussion list, offers a forum for researchers and technical representatives from organizations operating in industrial control systems (ICS) and operational technology (OT) design, manufacturing, and security to interact, share opinions and expertise, and leverage each other’s experiences in supporting continued growth and adoption of CWE as a common language for defining ICS/OT security weaknesses.

Fact Sheet | GitHub Repository | Request Information/Join


REST API Working Group (REST API WG)

The objective of the REST API WG, which collaborates via an email discussion list, is to ease the interface between security software and hardware architects, EDA tool developers, verification engineers concerned about mitigating security risks in their products; and the databases themselves. A new RESTful API will be designed.

Fact Sheet | GitHub Repository | Request Information/Join


User Experience Working Group (UEWG)

The UEWG is working to develop strategies and solutions for improving how CWE weaknesses are presented, optimizing CWE content, and educating end users.

Fact Sheet | GitHub Repository | Request Information/Join

Community

Artificial Intelligence Working Group (AI WG)

The AI WG was established by CWE™ and CVE® community stakeholders to identify and address gaps in the CWE corpus where AI-related weaknesses are not adequately covered, and work collaboratively to fix them.

Request Information/Join

Root Cause Mapping Working Group (RCM WG)

The RCM WG was established by CVE® and CWE™ community stakeholders (e.g., Intel, Microsoft, Red Hat, Rapid 7, CISA, HSSEDI) with the purpose of determining how to improve and scale accurate root cause mapping. Specifically, the working group is exploring the feasibility of an effective decentralized root cause mapping ecosystem.

GitHub Repository | Request Information/Join

Page Last Updated: June 10, 2024