Title :
Optimization of hierarchical vulnerability assessment method
Author :
Rui, Liu ; Danfeng, Yan ; Fan, Lin ; Fangchun, Yang
Author_Institution :
State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
Abstract :
Network vulnerability assessment has carried out a certain degree of research work in relative field. The common method for vulnerability assessment is hierarchical asset vulnerability assessment, in which vulnerability value is fixed and the weight of service is subjective. Thus the accuracy of calculation depends on experience and judgment. In this paper, according to CVSS (Common Vulnerability Assessment System) theory, a method that takes environment factors into consideration is proposed for asset vulnerability assessment using information collected by vulnerability scanning tool. As an optimization of original method, this method is more accurate than original method.
Keywords :
computer networks; telecommunication security; common vulnerability assessment system; hierarchical asset vulnerability assessment method; network security; optimization; vulnerability scanning tool; Accuracy; Computer crime; Data security; Decision making; Laboratories; Optimization methods; Peer to peer computing; Protocols; Risk analysis; Telecommunication switching; CVSS; Hierarchical Asset Vulnerability Assessment;
Conference_Titel :
Broadband Network & Multimedia Technology, 2009. IC-BNMT '09. 2nd IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-4590-5
Electronic_ISBN :
978-1-4244-4591-2
DOI :
10.1109/ICBNMT.2009.5348535
