Design of Integrated Vulnerabilities Database for Computer Networks Security Analysis

Author

Fedorchenko, Andrey ; Kotenko, Igor ; Chechulin, Andrey

Author_Institution

Lab. of Comput. Security Problems, St. Petersburg Inst. for Inf. & Autom., St. Petersburg, Russia

fYear

2015

fDate

4-6 March 2015

Firstpage

559

Lastpage

566

Abstract

Integration of existing open vulnerabilities databases allows to increase the probability of detection of vulnerable software and hardware that are used in computer networks and improve the quality of security analysis. The paper is dedicated to investigation of open vulnerabilities databases and of process of their integration for further application in the security analysis system. The object of investigation is the process of integration of vulnerabilities databases. The main distinct of the designed integrated vulnerabilities database is its orientation to operative receiving of results of appropriate vulnerabilities search. The model of the process of the vulnerabilities database generation and the structure of the integrated vulnerabilities database are suggested. The description of the designed prototype and the results of its testing are outlined.

Keywords

computer network security; database management systems; computer networks security analysis; integrated vulnerabilities database design; vulnerable software detection; Computer networks; Databases; Security; computer networks security analysis; security information and event management; vulnerabilities databases;

fLanguage

English

Publisher

ieee

Conference_Titel

Parallel, Distributed and Network-Based Processing (PDP), 2015 23rd Euromicro International Conference on

Conference_Location

Turku

ISSN

1066-6192

Type

conf

DOI

10.1109/PDP.2015.38

Filename

7092775