ICISM: Allow pluggable ICISM CVE Files

Description

(Imported from Google Code)
DDMSence comes bundled with the Public Release versions of ISM.XML. Users may wish to use versions with higher classifications of data. It would be nice if the schema and enumeration files could be located via a configurable property.

Activity

Show:
Brian Uri
September 18, 2010, 5:10 PM

Fixed in Rev 269

Brian Uri
September 18, 2010, 4:23 PM

1) "cve.enumLocation" must be promoted to a configurable property in PropertyReader.
2) The ISMVocabulary class should check to see if the property has changed since the last run (and if so, reload all of the enums). This is an on-demand task because it could be costly. I considered making ISMVocabulary an instantiated class, with enum loading at instantiation, but the cost of loading all the XML files was immediately apparent.
3) New unit tests are required to try swapping out the CVEs with a test set. The test set probably doesn't need to be included in the distribution. Maybe duplicate the real set into some test location, and then overwrite one of the files with a test file.
4) Documentation should be updated with the new configurable property as well as information in the ICISM Security Attributes related to the design decisions made between this and the closed Issue #57.

Brian Uri
September 18, 2010, 3:51 PM

4) ISMVocabulary should be come an instantiated class, so each instantiation will pull the latest CVE location.

Brian Uri
September 18, 2010, 3:44 PM

1) "cve.enumLocation" must be promoted to a configurable property in PropertyReader.
2) New unit tests are required to try swapping out the CVEs with a test set. The test set probably doesn't need to be included in the distribution. Maybe duplicate the real set into some test location, and then overwrite one of the files with a test file.
3) Documentation should be updated with the new configurable property as well as information in the ICISM Security Attributes related to the design decisions made between this and the closed Issue #57.

Brian Uri
September 18, 2010, 3:38 PM

It opens up too many possibilities to screw up if I allow a pluggable ICISM schema. I will only open up the CVEs for now.

Fixed

Assignee

Brian Uri

Reporter

Brian Uri

Labels

None

Fix versions

Priority

Medium