BF LL1 ACFG API
Irena Bojanova, Inventor/Creator, PI & Lead, NIST Bugs Framework (BF), 2014 – ~~~ #

The current BF Taxonomy comprises the BF Input/Output Check(_INP), Memory Corruption/Disclosure (_MEM), and Data Type (_DAT) Class Types and the BF Failure (_FLR) Class Type.

//Exclusive Rights Only//

The BF LL1 ACFG APP/API queries BF and generates the corresponding (i.e., filtered) BF LL1 ACFG in EBNF format.

• UI
  [https://«coming soon»/BFFormalLanguage](https://«coming soon»/BFFormalLanguage)
  

• API
  

  C#
  

  HttpClient client = new HttpClient() { BaseAddress = new Uri("https://<<coming soon>>") };
  
  //to be updated <-- replace YOUR_USER_NAME and YOUR_KEY
  client.DefaultRequestHeaders.Add("user", YOUR_USER_NAME);
  client.DefaultRequestHeaders.Add("key", YOUR_KEY);
  
  var responseEBNF = await client.GetAsync("BFFormalLanguage");
  responseEBNF.EnsureSuccessStatusCode();        
  var result = await responseEBNF.Content.ReadAsStringAsync();
  

  Python

  //to be added//

BF PATENT PENDING
U.S. Patent Application No. PCT/US2025/038662 Bugs Framework (BF): A System for Formal Specification of Cybersecurity Weaknesses and Vulnerabilities, Definition of Secure Coding Principles, and Generation of Weakness and Vulnerability Datasets and Vulnerability Classifications. Inventor: Irena Bojanova, NIST.

BF CITATION:
Bojanova I (2024) Bugs Framework (BF): Formalizing Cybersecurity Weaknesses and Vulnerabilities. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP), NIST SP 800-231. https://doi.org/10.6028/NIST.SP.800-231