A Software Assessment Method Based on Relevance Vulnerability
| Autor: | Xingchen Cao, Sheng Jiang, Feng Fang, Xudong Miao, Binbin Qu, Yongchun Wang |
|---|---|
| Rok vydání: | 2015 |
| Předmět: |
Computer science
business.industry Vulnerability Vulnerability management Computer security computer.software_genre Security information and event management Software Risk analysis (engineering) Software bug Software security assurance Quantitative risk assessment software Relevance (information retrieval) Software verification and validation business computer Vulnerability (computing) |
| Zdroj: | CIS |
| DOI: | 10.1109/cis.2015.108 |
| Popis: | At present, most of the software security assessment system can only evaluate the potential impact of a single vulnerability on the system which ignore the impact of the multiple vulnerabilities. Therefore, we introduce the concept of relevance vulnerability pattern and design a relevance vulnerability pattern library taking consider of the potential impact caused by multiple vulnerabilities. After that, a software assessment method is given based on relevance vulnerability. Experimental results show that the evaluation results are comprehensive and objective. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|