• Home
• org.mitre
• stix
• 1.1.1.2
• source code
• prod.xsd

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

schemas.v1.1.1.external.cvrf_1.1.prod.xsd Maven / Gradle / Ivy

  
  
  
  
  
  
  
  
  
  
  
  
    This is the XML schema for the Common Vulnerability Reporting Framework's Product model.  For more information, see the CVRF whitepaper.
    
      Joe Hemmerlein <[email protected]>
      Joe Clarke <[email protected]>
      2012-05-07
      CVRF Product Dictionary
      1.1
    
  
  
  
  
  
    
      Types enumerating the individual parts (stubs) that comprise a product name.
    
    
      
        
          The name of the vendor or manufacturer that makes the product .
        
      
      
        
          The product family that the product falls into.
        
      
      
        
          The name of the product.
        
      
      
        
          The version of the product. This can be a numeric or other descriptor.
        
      
      
        
          The patch level of the product.
        
      
      
        
          The service pack of the product.
        
      
      
        
          The architecture for which the product is intended.
        
      
      
        
          The language of the product.
        
      
      
        
          A non-specific legacy entry.
        
      
      
        
          A specification such as a standard, best common practice, etc.
        
      
      
        
          The host name of a system/service.
        
      
      
        
          The URI component of a system/service.
        
      
      
        
          The file name component of a system/service.
        
      
    
  
  
    
      Types enumerating the ways products can be related to each other.
    
    
      
        
          This product is a default component of the referenced product.
        
      
      
        
          This product is an optional component of the referenced product.
        
      
      
        
          This product is an external component of the referenced product.
        
      
      
        
          This product is installed on the referenced product.
        
      
      
        
          This product is installed with the referenced product.
        
      
    
  
  
    
      
      
    
    
    
  
  
  
  
  
    
      Neutral product tree to streamline product entries that can be referenced elsewhere in the document. The end of each branch ("FullProductName") represents a referrenceable product.
    
    
      
        
        
        
          
            Defines how this product is related to another product.
          
          
            
              
            
            
              
                The ProductReference refers to the unique ProductID of the product that is to which another product will be related.
              
            
            
              
                The RelationType attribute defines how the two products are related.
              
            
            
              
                RelatesToProductReference refers to the unique ProductID of the product to which the ProductReference attribute value relates.
              
            
          
        
        
          
            Container for grouping products to be used in vulnerabilities.
          
          
            
              
                
                  A named container to associate two or more product IDs together for use in vulnerabilities.
                
                
                  
                    
                      
                        Optional textual description for this group.
                      
                      
                        
                          
                        
                      
                    
                    
                      
                        The ID of an existing product in this tree that is to be a member of this group.
                      
                    
                  
                  
                    
                      The unique identifier used to reference this group.
                    
                  
                
              
            
          
        
      
    
    
      
        This is to ensure that each FullProductName uses a unique ProductID value.
      
      
      
    
    
      
        This is to ensure that each Group uses a unique GroupID value.
      
      
      
    
    
      
        A key to reference a specific product.
      
      
      
    
    
      
        An instance of the ProductKey used to define a relationship product.
      
      
      
    
    
      
        An instance of the ProductKey used to define a related product.
      
      
      
    
    
      
        An instance of the ProductKey used to define a product group membership list.
      
      
      
    
  
  
    
      Endpoint of product tree - this is an actual product entry. The string represents the friendly product name (i.e. the way it would be printed in other publications)
    
    
      
        
          
            
              A value that uniquely identifies this Product entry in the scope of this document. Whenever a reference to this Product entry is needed anywhere in this document, its unique ID will be referenced.
            
          
          
            
              The Common Platform Enumeration (CPE) attribute refers to a method for naming platforms. The structure for CPE is described at http://cpe.mitre.org.