01337nas a2200265 4500000000100000000000100001008004100002653001100043653002200054653002700076653000900103653002200112653002100134653001300155653002000168653001100188100001500199700001900214700001900233700002800252245007500280300001000355490000700365520069900372 2022 d10acrisis10aCybersecurity Act10acybersecurity taxonomy10aharm10aincident response10aInteroperability10aOntology10aRisk Assessment10athreat1 aVlad Posea1 aGeorge Sharkov1 aAdrian Baumann1 aGeorgios Chatzichristos00aTowards Unified European Cyber Incident and Crisis Management Ontology a33-440 v533 a
ENISA highlighted the need for a common reporting taxonomy for cybersecurity incidents to be used by cybersecurity analysts across Europe. The analysis of the domain revealed a large number of taxonomies for different areas of the cybersecurity domain (types of attacks, vulnerabilities, sectors, harm), but those needed to be linked together in a model that allows a cybersecurity officer to report and track an incident fast and accurately. The taxonomy should also treat the cybersecurity domain not only from the technical point of view but also from the socio-economical aspect. This document describes the taxonomy, how we propose to use it, and the methodology used to develop it.