TEBIT. Teknisk beskrivningsmodell för IT-vapen

This report presents a proposal for a taxonomy for IT-weapons, limited to computer software. A definition of IT-weapons is also formulated. No other taxonomy with the above limitations is known to exist today. The taxonomy is primarily intended to be used for classification of IT-weapons held in a database at FOI. The taxonomy contains 14 categories of general properties of an IT-weapon. It has been adapted to international standards through a connection to the CVE list (Common Vulnerabilities and Exposures), which is maintained by MITRE. The problem to make unambiguous classifications of combined IT-weapons is discussed and a solution is presented. Every category is thoroughly explained and clarifying examples are used whenever needed. Possible future areas of use for the taxonomy are presented. In addition to this some guidelines for further development of the taxonomy are given.