Ranking Attacks Based on Vulnerability Analysis

机译：基于漏洞分析的排名攻击

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Now that multiple-known attacks can affect one software product at the same time, it is necessary to rank and prioritize those attacks in order to establish a better defense. The purpose of this paper is to provide a set of security metrics to rank attacks based on vulnerability analysis. The vulnerability information is retrieved from a vulnerability management ontology, which integrates commonly used standards like CVE, CWE, CVSS, and CAPEC. Among the benefits of ranking attacks through the method proposed here are: a more effective mitigation or prevention of attack patterns against systems, a better foundation to test software products, and a better understanding of vulnerabilities and attacks.

机译：现在，多种已知的攻击可以同时影响一个软件产品，因此有必要对这些攻击进行排名和优先排序，以便建立更好的防御。本文的目的是提供一组安全度量，以基于漏洞分析对攻击进行排名。漏洞信息是从漏洞管理本体中检索的，该本体集成了常用的标准，例如CVE，CWE，CVSS和CAPEC。通过此处提出的方法对攻击进行排名的好处包括：更有效地缓解或预防针对系统的攻击模式，更好的测试软件产品基础以及对漏洞和攻击的更好理解。

著录项

来源
《System Sciences (HICSS-43), 2010》|2010年|1-10|共10页
会议地点
作者
Ju An Wang; Hao Wang; Minzhe Guo; Linfeng Zhou; Camargo J.;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类系统科学;
关键词
入库时间 2022-08-26 14:20:48

相似文献

外文文献
中文文献
专利

1. Measuring and ranking attacks based on vulnerability analysis [J] . Ju An Wang, Minzhe Guo, Hao Wang, Information systems and e-business management . 2012,第4期

机译：根据漏洞分析评估攻击并对其进行排名
2. An Agent Based Intelligent Dynamic Vulnerability Analysis Framework for Critical SQLIA Attacks: Intelligent SQLIA Vulnerability Analyzer Agent [J] . Jeya Mala Dharmalingam, M Eswaran International Journal of Intelligent Information Technologies . 2018,第3期

机译：基于代理的智能动态漏洞分析框架，用于关键SQLIA攻击：智能SQLIA漏洞分析仪代理
3. Gender-based vulnerability: combining Pareto ranking and spatial statistics to model gender-based vulnerability in Rohingya refugee settlements in Bangladesh [J] . Erica L. Nelson, Daniela Reyes Saade, P. Gregg Greenough International Journal of Health Geographics . 2020,第1期

机译：基于性别的脆弱性：将帕累托排名和空间统计数据结合到孟加拉国罗兴省难民区的性别脆弱性模拟基于性别的脆弱性
4. Ranking Attacks Based on Vulnerability Analysis [C] . Ju An Wang, Hao Wang, Minzhe Guo, Hawaii International Conference on System Sciences . 2010

机译：基于漏洞分析的排名攻击
5. Cyber-attacks on police departments: Analysis of cyber attack vulnerabilities on police digital infrastructures. [D] . Coop, John. 2016

机译：警察部门的网络攻击：分析警察数字基础设施上的网络攻击漏洞。
6. Gender-based vulnerability: combining Pareto ranking and spatial statistics to model gender-based vulnerability in Rohingya refugee settlements in Bangladesh [O] . Erica L. Nelson, Daniela Reyes Saade, P. Gregg Greenough 2020

机译：基于性别的脆弱性：结合帕累托排名和空间统计数据为孟加拉国罗兴亚难民定居点中基于性别的脆弱性建模
7. Gender-based vulnerability: combining Pareto ranking and spatial statistics to model gender-based vulnerability in Rohingya refugee settlements in Bangladesh [O] . Erica L. Nelson, Daniela Reyes Saade, P. Gregg Greenough 2020

机译：基于性别的脆弱性：将帕累托排名和空间统计数据结合到孟加拉国罗兴省难民区的性别脆弱性模拟基于性别的脆弱性
8. Vulnerability of Network Traffic under Node Capture Attacks using Circuit Theoretic Analysis [R] . Tague, P., Slater, D., Rogers, J., 2008

机译：使用电路理论分析的节点捕获攻击下的网络流量漏洞

Ranking Attacks Based on Vulnerability Analysis

摘要

著录项

相似文献

相关主题

期刊订阅