A distributed vulnerability detection system for an intranet

Author

Corral, Guiomar ; Zaballos, Agustin ; Cadenas, Xavier ; Grané, Anna

Author_Institution

Dept. of Comput. Sci., Univ. Ramon Llull, Barcelona, Spain

fYear

2005

fDate

11-14 Oct. 2005

Firstpage

291

Lastpage

294

Abstract

Security must be an integral element of any network. An organization´s network is the basic environment connecting all users, servers and applications. Internal network security has to ensure that the corporate network is secure; therefore it includes tracking physical, endpoint and application security issues. Security testing is a crucial instrument to control network security, but there exists a need for an automated security system which helps security analysts and testers. This paper reviews the main topics related to vulnerability assessment in intranets and proposes a new distributed system to analyze security capability and vulnerability detection in intranets. The system design and implementation is also presented. This proposal is based on the open source security testing methodology manual and it is part of a wider system for automating vulnerability detection called Consensus.

Keywords

distributed processing; intranets; security of data; telecommunication security; Consensus; automated security system; corporate network; distributed system; distributed vulnerability detection system; internal network security; intranet; network security control; open source security testing methodology manual; security capability; vulnerability assessment; Automatic control; Automatic testing; Computer science; Computer security; Data security; Intrusion detection; Joining processes; Power system security; Proposals; System testing;

fLanguage

English

Publisher

ieee

Conference_Titel

Security Technology, 2005. CCST '05. 39th Annual 2005 International Carnahan Conference on

Print_ISBN

0-7803-9245-0

Type

conf

DOI

10.1109/CCST.2005.1594863

Filename

1594863