Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Bugs Framework (BF) - Poster



Irena Bojanova


Motivation: Crucial need of a formal classification system allowing unambiguous specification of software security bugs and weaknesses, and the vulnerabilities that exploit them. Objective: Create bug models, weakness taxonomies, and vulnerability models with causation and propagation rules; and an unambiguous formal weakness/vulnerability specification language.
Bugs Framework (BF)


Bug, Bug/Fault Models, Bugs Framework (BF), Context-Free Grammar, Cybersecurity, Failure, Fault, Formal Grammar, Formal Language, Formal Specification, LL(1) Grammar, Security, Software Security, Bug Taxonomy, Vulnerability, Vulnerability Model, Vulnerability Specification, Weakness, Weakness Taxonomy, Weakness Specification


Bojanova, I. (2023), Bugs Framework (BF) - Poster, Bugs Framework (BF), [online],, (Accessed June 20, 2024)


If you have any questions about this publication or are having problems accessing it, please contact

Created November 7, 2023, Updated December 15, 2023