Currently, there are several initiatives in the world that try to formalize and standardize the description of security incidents. However, it is neither realistic nor desirable to believe that it will be possible to create a single common standard to describe all security incidents. The solution may be to create a basic one an ontology that would semantically integrate different approaches to describing threats and attacks, thereby enabling the integration of different independent standards and knowledge databases.