| Autor: |
CISAR, Petar, RAJNAI, Zoltan, MARAVIC CISAR, Sanja, PINTER, Robert |
| Předmět: |
|
| Zdroj: |
Annals of the Faculty of Engineering Hunedoara - International Journal of Engineering; Aug2016, Vol. 14 Issue 3, p207-218, 12p |
| Abstrakt: |
The Common Vulnerability Scoring System (CVSS) represents an open structure for linking the characteristics and effects of IT vulnerabilities. The National Vulnerability Database (NVD) formulated particular scores for known vulnerabilities. Government institutions can utilize the Federal Information Processing Standards (FIPS) 199 security classifications with the NVD CVSS scores to acquire impact scores that are customized to concrete environment. CVSS is comprised of three components: base, temporal and environmental. Every component generates a number ranging from 0 to 10 and a textual form that defines the parameters used to determine the score (called vector). The base group describes the internal characteristics of a vulnerability. The temporal component refers to the attributes of a vulnerability that change after some time. The environmental component speaks to the attributes of a vulnerability that are remarkable to any client's environment. CVSS empowers IT experts, security and application vendors and scientists to all advantage by accepting this common approach of scoring IT vulnerabilities. [ABSTRACT FROM AUTHOR] |
| Databáze: |
Complementary Index |
| Externí odkaz: |
|
