misp-taxonomies/information-security-data-source/machinetag.json

{
  "namespace": "information-security-data-source",
  "description": "Taxonomy to classify the information security data sources.",
  "refs": [
    "https://www.sciencedirect.com/science/article/pii/S0167404818304978"
  ],
  "version": 1,
  "predicates": [
    {
      "value": "originality",
      "expanded": "Originality",
      "description": "Originality and novelty of the provided information"
    },
    {
      "value": "timeliness-sharing-behavior",
      "expanded": "Timeliness sharing behavior",
      "description": "Timeliness of the provided information"
    },
    {
      "value": "type-of-information",
      "expanded": "Type of information",
      "description": "Type of provided information"
    },
    {
      "value": "integrability-format",
      "expanded": "Integrability format",
      "description": "Level of integrability format for the provided information"
    },
    {
      "value": "integrability-interface",
      "expanded": "Integrability interface",
      "description": "Level of integrability interface for the provided information"
    },
    {
      "value": "type-of-source",
      "expanded": "Type of source",
      "description": "Types of information security data source"
    },
    {
      "value": "trustworthiness-creditabilily",
      "expanded": "Trustworthiness creditability",
      "description": "Source of the creditability"
    },
    {
      "value": "trustworthiness-traceability",
      "expanded": "Trustworthiness traceability",
      "description": "Traceability of the provided information"
    },
    {
      "value": "trustworthiness-feedback-mechanism",
      "expanded": "Trustworthiness feedback mechanism",
      "description": "Feedback such as user ratings or comments regarding the usefulness of the provided information"
    }
  ],
  "values": [
    {
      "predicate": "type-of-information",
      "entry": [
        {
          "value": "vulnerability",
          "expanded": "Vulnerability",
          "description": "Information regarding a weakness of an asset which might be exploited by a threat"
        },
        {
          "value": "threat",
          "expanded": "Threat",
          "description": "Information regarding the potential cause on an unwanted incident"
        },
        {
          "value": "countermeasure",
          "expanded": "Countermeasure",
          "description": "Information regarding any administrative, managerial, technical or legal control that is used to counteract an information security risk"
        },
        {
          "value": "attack",
          "expanded": "Attack",
          "description": "Information regarding any unauthorized attempt to access, alter or destroy an asset"
        },
        {
          "value": "risk",
          "expanded": "Risk",
          "description": "Information describing the consequences of a potential event, such as an attack"
        },
        {
          "value": "asset",
          "expanded": "Asset",
          "description": "Information regarding any object or characteristic that has value to an organization"
        }
      ]
    },
    {
      "predicate": "originality",
      "entry": [
        {
          "value": "original-source",
          "expanded": "Original source",
          "description": "Information originates from the data sources which publish their own information"
        },
        {
          "value": "secondary-source",
          "expanded": "Secondary source",
          "description": "Information is integrated or copied from another information security data source"
        }
      ]
    }
  ]
}