Skip to content

Model National Cyber Incident Scoring System (NCISS) #705

New issue
New issue
Open
Feature
#707
Open
Model National Cyber Incident Scoring System (NCISS)#705
Feature
#707
Assignees
ahouseholder
Labels
enhancementNew feature or requestintegrationRelated to integration of SSVC into another framework or systemtech/dataData implementation (content of /data, data object instances, etc.)
Milestone
2025-09
@ahouseholder

Description

@ahouseholder
ahouseholder
opened on Feb 20, 2025

Describe the solution you'd like

CISA has developed a National Cyber Incident Scoring System. It's a numerical function, but its spec contains a number of ordered categorical lists that could be useful to include in the SSVC vocabulary.

Additional context

This could help us expand applicability of SSVC beyond pure vulnerability response and increase its ability to model vulnerability response in the face of adversarial activity as expressed in incident data.

Metadata

Metadata

Assignees

Labels

enhancementNew feature or requestintegrationRelated to integration of SSVC into another framework or systemtech/dataData implementation (content of /data, data object instances, etc.)

Type

Feature

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions