Risk Evaluation by Vulnerability Detection Tools for IT Department of the Royal Thai Army

机译：诸如泰国皇家军队的IT部门漏洞检测工具的风险评估

获取原文

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Security is always a main concern in any organization networks. Securitytest is an important step to ensure that the organization network isregularly inspected and well prevented from attackers. However, audit and analysis are not only time-consuming procedure but also depended to human expertise. Automatic vulnerability detection ispreferred asa proactive tool for security professionals to identify vulnerabilities before an adversary can exploit them. Typically, there are two types of vulnerability detection tools: Hardware Appliances and Software Applications. However, vulnerability detection tools have some important weaknesses. They only identify surface vulnerabilities and are unable to address the overall risk level of the scanned network. Network risks arebasically divided into 4 levels. Nevertheless, they often use different standard for risk level classification whichhabitually related to some organizations or vendors. Henceforth, this paper presents "Network Risk Metric" as an unbiased risk evaluation from several vulnerability detection tools. In this paper, NetClarity (hardware-based) and Nessus (software-based) are implemented on two networks from an IT department of the Royal Thai Army (RTA). Then, the proposed metric is applied for evaluating overall network risk from both vulnerability detection tools.

机译：安全性始终是任何组织网络的主要关注点。 SecurityTest是确保组织网络正常检查并从攻击者中掌控的重要一步。但是，审计和分析不仅是耗时的程序，而且还依赖于人类的专业知识。自动漏洞检测ispreferred asa主动工具，用于安全专业人员，以识别攻击前的漏洞可以利用它们。通常，有两种类型的漏洞检测工具：硬件设备和软件应用程序。但是，漏洞检测工具具有一些重要的弱点。它们仅识别表面漏洞，无法解决扫描网络的整体风险级别。网络风险与4个级别分为4个。然而，他们经常使用与某些组织或供应商有关的风险级别分类的不同标准。从此，本文将“网络风险指标”作为来自多个漏洞检测工具的无偏见风险评估。在本文中，网际（基于硬件）和Nessus（基于软件）在来自泰国皇家军队（RTA）的IT部门的两个网络上实施。然后，应用所提出的指标用于评估来自漏洞检测工具的整体网络风险。

著录项

来源
《European Conference of Circuits Technology nd Devices》|2013年||共7页
会议地点
作者
ANIWAT HEMANIDHI; SANONCHIMMANEE; PARINYA SANGUANSAT;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TN91-53;
关键词
Risk Evaluation; Vulnerability Detection; Security Metrics; Network Security; Network Threat;

机译：风险评估;漏洞检测;安全指标;网络安全;网络威胁;

相似文献

外文文献
中文文献
专利

1. Risk Factors Affecting Condom Use among Royal Thai Army Conscripts in Thailand [J] . Phrutthinun Surit, Wutthichai Jariya, Ning Zheng, World Journal of AIDS . 2017,第2期

机译：影响泰国皇家泰国军队法令中避孕套的危险因素
2. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [J] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi Military Medical Research . 2020,第1期

机译：泰国皇家军队静态线降落伞训练损伤的发病率和风险因素
3. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [J] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi 军事医学研究：英文版 . 2020,第004期

机译：泰国皇家军队静态线降落伞训练损伤的发病率和风险因素
4. Risk Evaluation by Vulnerability Detection Tools for IT Department of the Royal Thai Army [C] . ANIWAT HEMANIDHI, SANONCHIMMANEE, PARINYA SANGUANSAT European Conference of Circuits Technology nd Devices . 2013

机译：诸如泰国皇家军队的IT部门漏洞检测工具的风险评估
5. Evaluation and review of the safety management system implementation in the Royal Thai Air Force. [D] . Chaiwan, Sakkarin. 2015

机译：评估和审查泰国皇家空军实施的安全管理体系。
6. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [O] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi 2020

机译：泰国皇家陆军静态降落伞训练期间与伤害相关的发病率和危险因素
7. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [O] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi 2020

机译：泰国皇家军队静态线降落伞训练损伤的发病率和风险因素

Risk Evaluation by Vulnerability Detection Tools for IT Department of the Royal Thai Army

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅