Detection of Configuration Vulnerabilities in Distributed (Web) Environments
| Autor: | Henrik Plate, Matteo Maria Casalino, Serena Elisa Ponta, Michele Mangili |
|---|---|
| Rok vydání: | 2013 |
| Předmět: |
020203 distributed computing
Distributed Computing Environment business.industry Computer science Vulnerability 02 engineering and technology Open source software Computer security computer.software_genre Internet security 0202 electrical engineering electronic engineering information engineering Security through obscurity Web application 020201 artificial intelligence & image processing The Internet business computer Secure coding |
| Zdroj: | Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ISBN: 9783642368820 SecureComm |
| Popis: | Many tools and libraries are readily available to build and operate distributed Web applications. While the setup of operational environments is comparatively easy, practice shows that their continuous secure operation is more difficult to achieve, many times resulting in vulnerable systems exposed to the Internet. Authenticated vulnerability scanners and validation tools represent a means to detect security vulnerabilities caused by missing patches or misconfiguration, but current approaches center much around the concepts of hosts and operating systems. This paper presents a language and an approach for the declarative specification and execution of machine-readable security checks for sets of more fine-granular system components depending on each other in a distributed environment. Such a language, building on existing standards, fosters the creation and sharing of security content among security stakeholders. Our approach is exemplified by vulnerabilities of and corresponding checks for Open Source Software commonly used in today’s Internet applications. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|