K- Zero Day Safety- Metric for Measuring the Risk of Unknown Vulnerabilities
作者: Mise Pallavi Ramesh , N. Swapna Goud
DOI:
关键词:
摘要: Today's computer networks face intelligent attackers who combine multiple vulnerabilities to penetrate with destructive impact. The overall network security cannot be determined by simply counting the number of vulnerabilities. Due less predictable nature software flaws we can’t measure risk unknown This affects metrics, because a safer configuration would little value if it were equally vulnerable zero-day attacks. In this paper, instead just measuring how much such vulnerability required for compromising assets can also attempting rank By using collaborative filtering technique different (types of) and novel metrics uncertain dynamic data propose Flexible Robust k-Zero Day Safety model
pen2print.org参考文章(5)
Richard Lippmann, Kyle Ingols, Chris Scott, Keith Piwowarski, Kendra Kratkiewicz, Mike Artz, Robert Cunningham, Validating and Restoring Defense in Depth Using Attack Graphs military communications conference. pp. 981- 990 ,(2006) , 10.1109/MILCOM.2006.302434
Ratinder Kaur, Maninder Singh, Efficient hybrid technique for detecting zero-day polymorphic worms ieee international advance computing conference. pp. 95- 100 ,(2014) , 10.1109/IADCC.2014.6779301
Marcel Frigault, Lingyu Wang, Anoop Singhal, Sushil Jajodia, Measuring network security using dynamic bayesian network Proceedings of the 4th ACM workshop on Quality of protection - QoP '08. pp. 23- 30 ,(2008) , 10.1145/1456362.1456368
Peter Mell, Karen Scarfone, Sasha Romanosky, Common Vulnerability Scoring System ieee symposium on security and privacy. ,vol. 4, pp. 85- 89 ,(2006) , 10.1109/MSP.2006.145
N. Poolsappasit, R. Dewri, I. Ray, Dynamic Security Risk Management Using Bayesian Attack Graphs IEEE Transactions on Dependable and Secure Computing. ,vol. 9, pp. 61- 74 ,(2012) , 10.1109/TDSC.2011.34