Measuring CVE Performance
Vuln4Cast 2024
, Ben Edwards
https://bjedwards.observablehq.cloud/measuring-cna-performance/
1 Number Completeness
Item Response Theory
Used to create Standarized tests
Assume
Each CNA has a latent
ability (θ)
Each field has a latent
difficulty (b)
and
slope (a)