Talk:Common Weakness Enumeration
Latest comment: 6 years ago by CodeCurmudgeon in topic List out of date
This article is rated Start-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Notability
editA quick web search shows a lot of uses of CWE, including by the US Department of Homeland Security (https://buildsecurityin.us-cert.gov/swa/cwe) so it's probably notable. --Fritzophrenic (talk) 21:42, 24 September 2014 (UTC)
List out of date
editI know "primary source" stuff is frowned upon. Is MITRE's website for CWE considered primary source for the list of companies with a "compatible" product? Because their website has a larger list than the unsourced list in the article: http://cwe.mitre.org/compatible/compatible.html --Fritzophrenic (talk) 21:42, 24 September 2014 (UTC)
- Maintaining a copy of the list here is kind of pointless. I updated the quantity based on current data and trimmed the list out - the article needs some serious help still. CodeCurmudgeon (talk) 00:41, 12 January 2018 (UTC)
Sources
editI'm stashing some potential resources here to improve the article. Hope to do it in the next couple of days.
- https://gcn.com/articles/2011/06/28/cwe-top-25-programming-errors.aspx
- http://www.informit.com/articles/article.aspx?p=1322398
- http://www.electronicdesign.com/industrial-automation/what-s-difference-between-cwe-and-cqe
- https://phys.org/news/2017-12-unhackable-darpa-grant.html (maybe...)
- https://securityintelligence.com/capec-making-heads-or-tails-of-attack-patterns/
- http://www.electronicdesign.com/industrial-automation/look-inside-nist-s-dramatically-reducing-security-vulnerabilities-report
- http://www.assetfinanceinternational.com/index.php/technology/technology-archive/technology-articles/16114-financial-sector-at-greatest-risk-from-hackers-report-warns
- https://nebraska.pure.elsevier.com/en/publications/studying-software-vulnerabilities
- https://makingsecuritymeasurable.mitre.org/docs/cwe-intro-handout.pdf
- https://www.heise.de/developer/meldung/Top-25-der-Programmierfehler-revisited-932565.html