This repository contains XML Schema Definition (XSD) files for OpenXSAM (Open eXtensible Security Assessment Methodology). OpenXSAM is an XML-based format designed primarily for sharing risk information in a machine-readable format. It enables security analysts to document and share essential information about assets, threats, risks, and cybersecurity controls. These definitions facilitate risk assessment and mitigation by providing a structured and standardized format for data exchange and analysis.
OpenXSAM allows security analysts to document and share information related to assets, threats, and risk information. It supports the exchange of data with various internal teams, external organizations, and automated threat intelligence sharing platforms, enhancing collaboration and threat mitigation.
Security test plan authoring benefits from OpenXSAM by providing valuable information on vehicle components, related functions, data flows, and associated cyber threat and risk information. This enables better-informed and more efficiently managed security testing processes.
OpenXSAM's risk information model is instrumental in risk-informed detection correlation and attack prediction across various attack surfaces. It also contributes to reducing noise in security alerts and responses, enhancing the effectiveness of automated security measures.
The repository supports the composition of individual Threat and Risk Assessments (TARAs) into comprehensive vehicle TARAs. This feature ensures that the assessment process is holistic, covering all relevant aspects of risk and security for a given system or asset.
This repository contains XML Schema Definition files (XSDs) that define the structure and format of OpenXSAM XML files. These XSDs are essential for validating OpenXSAM data and ensuring that it adheres to the established schema.
To use the OpenXSAM XML Schema Definitions in your projects, follow these steps:
- Clone or download this repository to your local environment.
- Use these XSDs for data validation and to ensure your OpenXSAM XML files conform to the standard.
This repository and its contents are released under the LICENSE terms. Please review the license to understand the usage and distribution rights associated with these XML Schema Definitions.