ETSI - European Telecommunications Standards Institute
Latest
GS ISI 002-2015
Scope
The present document provides a comprehensive security event classification model and associated taxonomy (based on existing results and hands-on user experience)@ covering both security incidents and vulnerabilities. The two latter ones become nonconformities when they violate an organization's security policy. The present document mainly supports operational security staff in their effort to qualify and categorize detected security events@ and more generally all stakeholders (especially CISOs and IT security managers) in their needs to establish a common language.
GS ISI 002-2015 history
2015GS ISI 002-2015 Information Security Indicators (ISI); Event Model A security event classification model and taxonomy (V1.2.1)
2013GS ISI 002-2013 Information Security Indicators (ISI); Event Model A security event classification model and taxonomy (V1.1.1)