%% You should probably cite draft-ietf-sacm-vuln-scenario-02 instead of this revision.
@techreport{ietf-sacm-vuln-scenario-01,
    number =    {draft-ietf-sacm-vuln-scenario-01},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-sacm-vuln-scenario/01/},
    author =    {Chris Coffin and Brant Cheikes and Charles Schmidt and Daniel Haynes and Jessica Fitzgerald-McKay and David Waltermire},
    title =     {{SACM Vulnerability Assessment Scenario}},
    pagetotal = 24,
    year =      2016,
    month =     jul,
    day =       8,
    abstract =  {This document describes an automated enterprise vulnerability assessment scenario aligned with the SACM Use Cases. The scenario assumes the existence of an endpoint management capability and begins with an enterprise ingesting vulnerability description information. Endpoints are assessed against the vulnerability description information based on a combination of examining known endpoint characterization information and collected endpoint information.},
}