OverviewTopPackageElement
Security Vulnerability Scoring Definition ABE UML Documentation
Summary:AttributesPropertiesDetail:Attributes
Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE
Class SecVulnerabilityScoringSystem

A standardized method for vulnerability measurement and severity scoring.

Notes: Three scoring specifications have been created, one for each of the categories of system vulnerabilities defined by NIST SCAP. They include the Common Vulnerability Scoring System (CVSS) which address software flaw vulnerabilies (introduced in 2004/v2 in 2007), the Common Misuse Scoring System (CMSS) which was designed for measuring and scoring misuse vulnerabilities. And the Common Configuration Scoring System (CCSS) which addresses software security configuration issue vulnerabilities.

Attributes
String description description

A narrative that defines the focus of each of the SecVulnerabilityScoringSystem.

String ID ID

A unique identifier for the SecVulnerabilityScoringSystem.

Notes: The three scoring systems are identified as CCSS (Common Configuration Scoring System), CMSS (Common Misuse Scoring System), and CVSS (Common Vulnerability Scoring System).

String name name

A word, term, or phrase by which the SecVulnerabilityScoringSystem is known and distinguished from other SecVulnerabilityScoringSystems.

Notes: There are three scoring systems named as Common Configuration Scoring System, Common Misuse Scoring System, and Common Vulnerability Scoring System.

SecurityVulnerabilityCategoryAssignment securityVulnerabilityCategory securityVulnerabilityCategory
SecurityVulnerabilityCategoryType securityVulnerabilityCategoryType securityVulnerabilityCategoryType
SecVulnerabilityScoringMetricDefnAssignment secVulnerabilityScoringDefnMetric secVulnerabilityScoringDefnMetric
String version version

A number or text used to specify that a SecVulnerabilityScoringSystem differs in certain respects from an earlier SecVulnerabilityScoringSystem.

Properties:
Alias
Classifier Behavior
Is Abstractfalse
Is Activefalse
Is Leaffalse
Keywords
NameSecVulnerabilityScoringSystem
Name Expression
NamespaceSecurity Vulnerability Scoring Definition ABE
Owned Template Signature
OwnerSecurity Vulnerability Scoring Definition ABE
Owning Template Parameter
PackageSecurity Vulnerability Scoring Definition ABE
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem
Representation
Stereotype
Template Parameter
VisibilityPublic

Attribute Details

 description 
Public String description

A narrative that defines the focus of each of the SecVulnerabilityScoringSystem.

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower1
Lower Value
MultiplicityNone (1)
Namedescription
Name Expression
NamespaceSecVulnerabilityScoringSystem
Opposite
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::description
Stereotyperequired
Template Parameter
TypeString
Upper1
Upper Value
VisibilityPublic

 ID 
Public String ID

A unique identifier for the SecVulnerabilityScoringSystem.

Notes: The three scoring systems are identified as CCSS (Common Configuration Scoring System), CMSS (Common Misuse Scoring System), and CVSS (Common Vulnerability Scoring System).

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower1
Lower Value
MultiplicityNone (1)
NameID
Name Expression
NamespaceSecVulnerabilityScoringSystem
Opposite
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::ID
Stereotyperequired
Template Parameter
TypeString
Upper1
Upper Value
VisibilityPublic

 name 
Public String name

A word, term, or phrase by which the SecVulnerabilityScoringSystem is known and distinguished from other SecVulnerabilityScoringSystems.

Notes: There are three scoring systems named as Common Configuration Scoring System, Common Misuse Scoring System, and Common Vulnerability Scoring System.

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower1
Lower Value
MultiplicityNone (1)
Namename
Name Expression
NamespaceSecVulnerabilityScoringSystem
Opposite
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::name
Stereotyperequired
Template Parameter
TypeString
Upper1
Upper Value
VisibilityPublic

 securityVulnerabilityCategory 
Public SecurityVulnerabilityCategoryAssignment securityVulnerabilityCategory
Constraints:
Properties:

AggregationNone
Alias
AssociationSecurityVulnerabilityCategoryScoredUsing
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity*
NamesecurityVulnerabilityCategory
Name Expression
NamespaceSecVulnerabilityScoringSystem
OppositesecVulnerabilityScoringDefn
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::securityVulnerabilityCategory
Stereotype
Template Parameter
TypeSecurityVulnerabilityCategoryAssignment
Upper*
Upper Value(*)
VisibilityPublic

 securityVulnerabilityCategoryType 
Public SecurityVulnerabilityCategoryType securityVulnerabilityCategoryType
Constraints:
Properties:

AggregationNone
Alias
AssociationSecurityVulnerabilityCategoryTypeDetermines
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower1
Lower Value(1)
Multiplicity1
NamesecurityVulnerabilityCategoryType
Name Expression
NamespaceSecVulnerabilityScoringSystem
OppositesecurityVulnerabilityScoringSpec
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::securityVulnerabilityCategoryType
Stereotype
Template Parameter
TypeSecurityVulnerabilityCategoryType
Upper1
Upper Value(1)
VisibilityPublic

 secVulnerabilityScoringDefnMetric 
Public SecVulnerabilityScoringMetricDefnAssignment secVulnerabilityScoringDefnMetric
Constraints:
Properties:

AggregationNone
Alias
AssociationSecVulnerabilityScoringDefnComposedOf
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower0
Lower Value(0)
Multiplicity*
NamesecVulnerabilityScoringDefnMetric
Name Expression
NamespaceSecVulnerabilityScoringSystem
OppositesecVulnerabilityScoringDefn
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::secVulnerabilityScoringDefnMetric
Stereotype
Template Parameter
TypeSecVulnerabilityScoringMetricDefnAssignment
Upper*
Upper Value(*)
VisibilityPublic

 version 
Public String version

A number or text used to specify that a SecVulnerabilityScoringSystem differs in certain respects from an earlier SecVulnerabilityScoringSystem.

Constraints:
Properties:

AggregationNone
Alias
Association
Association End
ClassSecVulnerabilityScoringSystem
Datatype
Default
Default Value
Is Compositefalse
Is Derivedfalse
Is Derived Unionfalse
Is Leaffalse
Is Orderedfalse
Is Read Onlyfalse
Is Staticfalse
Is Uniquetrue
Keywords
Lower1
Lower Value
MultiplicityNone (1)
Nameversion
Name Expression
NamespaceSecVulnerabilityScoringSystem
Opposite
OwnerSecVulnerabilityScoringSystem
Owning Association
Owning Template Parameter
Qualified NameSID Models::Enterprise Domain::Enterprise Risk ABE::Enterprise Security ABE::Security Vulnerability ABE::Security Vulnerability Scoring Definition ABE::SecVulnerabilityScoringSystem::version
Stereotype
Template Parameter
TypeString
Upper1
Upper Value
VisibilityPublic

OverviewTopPackageElement
Security Vulnerability Scoring Definition ABE UML Documentation
Summary:AttributesPropertiesDetail:Attributes