| Title | CAPEC ontology |
| Publication Type | Journal Article |
| Year of Publication | 2023 |
| Authors | Dimitrov V |
| Journal | Annuaire de l’Université de Sofia “St. Kliment Ohridski”. Faculté de Mathématiques et Informatique |
| Volume | 110 |
| Start Page | 63 |
| Pagination | 63-83 |
| ISSN | 1313-9215 (Print) 2603-5529 (Online) |
| Keywords | attack patterns, CAPEC, cybersecurity, ontology, OWL |
| Abstract | CAPEC is an effort coordinated by MITRE Corporation. Its aim is attack pattern database structured in taxonomies. CAPEC is available as XML document from its project site. CAPEC structure and content are under permanent change and development. It is still not mature database but may be never will. CAPEC, CWE, and CVE are databases devoted to attacks, weaknesses, and vulnerabilities. They refer each other forming a knowledge ecosystem in cybersecurity area. Traditional approach for knowledge presentation as information does not work well with conceptualizations under dynamics of this ecosystem and particularly of CAPEC. In this paper an alternative approach to CAPEC knowledge presentation is proposed, as ontology. First, CAPEC structure and content are discussed and then ontology structure is introduced. CAPEC as ontology opens doors to ``open world'' concept that is more adequate to ecosystem dynamics. |
| DOI | 10.60063/GSU.FMI.110.63-83 |
| Attachment | Size |
|---|---|
 110-063-083.pdf | 440.91 KB |