NIST Interagency Report 7502: The Common Configuration Scoring System: Metrics for Software Security Configuration Vulnerabilities
📄 Viewing lite version
Full site ›
Book Details
Author(s)U.S. Department of Commerce
ISBN / ASIN1496009215
ISBN-139781496009210
AvailabilityUsually ships in 24 hours
Sales Rank2,183,950
CategoryPaperback
MarketplaceUnited States 🇺🇸
Description ▲
The Common Configuration Scoring System (CCSS) is a set of measures of the severity of software security configuration issues. CCSS is derived from CVSS, which was developed to measure the severity of vulnerabilities due to software flaws. CCSS can assist organizations in making sound decisions as to how security configuration issues should be addressed and can provide data to be used in quantitative assessments of the overall security posture of a system. This report defines proposed measures for CCSS and equations to be used to combine the measures into severity scores for each configuration issue. The report also provides several examples of how CCSS measures and scores would be determined for a diverse set of security configuration issues.
More Books in Paperback
Nightmare Hour TV Tie-in Edition
View
First Light
View
The Miles Between
View
Prize Stories 1990: The O. Henry Awards (Pen / O. Henr…
View
Democracy Begins Between Two
View
The Model Locomotive Engineer, Fireman, and Engine Boy
View
Bloodline in the Sand
View
Making America, Volume A, Brief, 2nd Ed + Perfect Unio…
View
Ellis, Becoming a Master Student, 11th Edition Plus My…
View