Title :
A Study and Implementation of Vulnerability Assessment and Misconfiguration Detection
Author :
Lin, Ching-Huang ; Chen, Chih-Hao ; Laih, Chi-Sung
Author_Institution :
Dept. of Electr. Eng., Nat. Cheng Kung Univ., Tainan
Abstract :
According to a study from Gartner Group, mostly successful attacks exploit software applications and operating systems that were not properly configured or vulnerability patched. Regarding enterprises, there are far reaching consequences if their online services are attacked and compromised. As a result, making their systems safer is becoming a higher priority. In this paper, we proposed a system to resolve the vulnerability and misconfiguration issues. In the vulnerability part, we focus on the aspect of vulnerability assessment. We use CVSS (common vulnerability scoring system) to measure the vulnerability severity to the organization and help administrators with patch management. For the configuration portion, we use CCE (common configuration enumeration) configuration scanner to scan the system and determine the presence of the misconfiguration in the system. The experiments show that our system can help administrators to understand their own systems and enhance system security.
Keywords :
operating systems (computers); security of data; Gartner Group; common configuration enumeration; configuration scanner; misconfiguration detection; operating systems; patch management; software applications; system security; vulnerability assessment; Application software; Computer worms; Internet; Invasive software; Network servers; Operating systems; Security; Viruses (medical); Web server; Workstations; CCE; CVSS; Configuration Management; Vulnerability Management;
Conference_Titel :
Asia-Pacific Services Computing Conference, 2008. APSCC '08. IEEE
Conference_Location :
Yilan
Print_ISBN :
978-0-7695-3473-2
Electronic_ISBN :
978-0-7695-3473-2
DOI :
10.1109/APSCC.2008.212
