DocumentCode
2092797
Title
Analyzing vulnerability dynamic severity based on D-S evidence theory
Author
Xiao Yun ; Peng Jinye ; Wang Xuanhong ; Zhao Jian
Author_Institution
Dept. of Inf. Sci. & Technol., Northwest Univ., Xi´an, China
fYear
2010
fDate
29-31 July 2010
Firstpage
4201
Lastpage
4204
Abstract
To solve the problem of analyzing dynamic severity of computer security vulnerability, a method of analyzing vulnerability dynamic severity based D-S evidence theory was proposed. It fuses vulnerability static severity and alert statistic information produced by intrusion detection system to work out vulnerability dynamic severity metric utilizing the D-S evidence theory. Comparing with the method based on expert estimation and the fuzzy inference method, the proposed method has merits of fast computation speed, high degree of precision, simple realization and independent of expert experience. The experiments showed that this method is practical and high effective.
Keywords
fuzzy set theory; inference mechanisms; security of data; D-S evidence theory; alert statistic information; expert estimation; fuzzy inference method; intrusion detection system; vulnerability dynamic severity; vulnerability static severity; Electronic mail; Estimation; Fuses; HTML; Information science; Security; Telecommunications; Evidence Theory; Severity; Vulnerability;
fLanguage
English
Publisher
ieee
Conference_Titel
Control Conference (CCC), 2010 29th Chinese
Conference_Location
Beijing
Print_ISBN
978-1-4244-6263-6
Type
conf
Filename
5572870
Link To Document