ICISM: Consider toggling CVE validation between errors and warnings

Description

(Imported from Google Code)
The Metadata Registry uses the ICISM:nonICMarkings attribute for CUI
distribution statements. However, these token values are not valid
according to the controlled vocabulary enumeration outlined by the IC. Need
to determine:

  • Should these values be added to the enumeration?

  • Should MDR change its approach?

  • If none of the above, should it be possible for users to validate a DDMS
    Resource with CVE errors as warnings if they desire? Does this open a
    floodgate for suppressing validation in general?

http://ddmsence.googlecode.com/svn/trunk/data/CVEnumISM/CVEnumISMNonIC.xml

Status

Assignee

Brian Uri

Reporter

Brian Uri

Labels

None

Fix versions

Priority

Medium
Configure