1
Scope
2
References
3
Definitions
3.1
Terms defined elsewhere
3.2
Terms defined in this Recommendation
4
Abbreviations and acronyms
5
Conventions
6
High-level requirements
7 Accuracy
8
Effectiveness
9
Documentation
10
CWE version usage
11
Revocation of CWE compatibility
12
Review authority
Annex A – Type-specific requirements
A.2
Tool requirements
A.3
Security service requirements
A.4
Online capability requirements
Annex B – Media requirements
B.3
Electronic documents (HTML, word processor, PDF, ASCII text, etc.)
B.4
Graphical user interface (GUI)
Appendix I – List of CWE repositories for identifiers and the associated
context information
Appendix II – List of review authorities
Bibliography