• DocumentCode
    3758709
  • Title

    Forecasting severity of software vulnerability using grey model GM(1,1)

  • Author

    Jinkun Geng;Daren Ye;Ping Luo

  • Author_Institution
    School of Software, Beihang University, Beijing 100191, China
  • fYear
    2015
  • Firstpage
    344
  • Lastpage
    348
  • Abstract
    Vulnerabilities usually represents the risk level of software, and it is of high value to forecast vulnerabilities so as to evaluate the security level of software. Current researches mainly focus on predicting the number of vulnerabilities or the occurrence time of vulnerabilities, however, to our best knowledge, there are no other researches focusing on the prediction of vulnerabilities´ severity, which we think is an important aspect reflecting vulnerabilities and software security. To compensate for this deficiency, we borrows the grey model GM(1,1) from grey system theory to forecast the severity of vulnerabilities. The experiment is carried on the real data collected from CVE and proves the feasibility of our predicting method.
  • Keywords
    "Software","Predictive models","Data models","Mathematical model","Forecasting","Measurement","Security"
  • Publisher
    ieee
  • Conference_Titel
    Advanced Information Technology, Electronic and Automation Control Conference (IAEAC), 2015 IEEE
  • Print_ISBN
    978-1-4799-1979-6
  • Type

    conf

  • DOI
    10.1109/IAEAC.2015.7428572
  • Filename
    7428572
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3758709