OPTIMIZATION OF HIERARCHICAL VULNERABILITY ASSESSMENT METHOD
Network vulnerability assessment has carried out a certain degree of research work in relative field. The common method for vulnerability assessment is hierarchical asset vulnerability assessment, in which vulnerability value is fixed and the weight of service is subjective. Thus the accuracy of calculation depends on experience and judgment. In this paper, according to CVSS (Common Vulnerability Assessment System) theory, a method that takes environment factors into consideration is proposed for asset vulnerability assessment using information collected by vulnerability scanning tool. As an optimization of original method, this method is more accurate than original method.
Hierarchical Asset Vulnerability Assessment CVSS
Liu Rui Yan Danfeng Lin Fan Yang Fangchun
State Key Laboratory of Networking and Switching Technology Beijing University of Posts and Telecommunications, Beijing
国际会议
北京
英文
458-462
2009-10-18(万方平台首次上网日期,不代表论文的发表时间)