A Community Initiative
A Community Initiative
The Common Attack Pattern Enumeration and Classification (CAPEC) is an effort funded by the Department
of Homeland Security (DHS) and led by Cigital targeted at making the concept of attack patterns actionable for the broader community through:
- Standardizing the capture and description of attack patterns through definition of a standard schema
- Collecting known attack patterns into an integrated enumeration that can be effectively leveraged, enhanced and expanded by the community
- Classifying attack patterns such that users can easily identify the subset of the entire enumeration that is appropriate for their context
An important consideration in the pursuit of the CAPEC effort is its determined intent to standardize the definition of attack patterns not in isolation but rather as a key element of a broader, integrated software assurance knowledge architecture including related knowledge standardization efforts such as the CWE, CVE, CME, MAEC, etc.
Example attack patterns include:
- HTTP Response Splitting
- SQL Injection
- XSS in HTTP Query Strings
- Session Fixation
- Phishing
- Filter Failure through Buffer Overflow
- Removing or Short-circuiting Guard Logic
- Lifting Data Embedded in Client Distributions
- Subvert Code-signing Facilities
- Reflection Attack in an Authentication Protocol
- Cause Web Server Misclassification
- Rainbow Table Password Cracking
- Forced Deadlock
- Cache Poisoning
- Restful Privilege Escalation
The identification and definition of the initial set of CAPEC patterns came from a combination of the patterns outlined in the book Exploiting Software by Hoglund & McGraw, a broad investigation of many resources in the community describing common attacks, and the experiences gleaned as part of Cigital’s consulting services. This initial set should provide the community with a valuable set of actionable knowledge as well as serve as a seed to attract community involvement to refine, enhance and extend the set of CAPEC patterns available going forward. To become involved in the CAPEC effort, go to http://capec.mitre.org.
Sponsor
Vision and Leadership
|
