Title :
Taxonomic analysis of classification schemes in vulnerability databases
Author :
Tripathi, Anshu ; Singh, Umesh Kumar
Author_Institution :
Dept. of Inf. Technol., Mahakal Inst. of Technol., Ujjain, India
fDate :
Nov. 29 2011-Dec. 1 2011
Abstract :
Quantitative risk assessment of system security is emerging as an important research area in view of increasing population of vulnerabilities. Assessment on classified vulnerability datasets leads to effective vulnerability mitigation and risk analysis. An effective vulnerability classification scheme under rich taxonomic features that relates cause, impact and risk level can serve the purpose. However there is no common classification scheme in this regard. The focus of our research is taxonomic analysis of classification schemes in pertinent vulnerability databases, so as to identify issues involved and form a basis for development of a common classification scheme. Our objective is to shape and mature a classification scheme to accelerate research in the quantitative evaluation of risk levels as a measure of system security.
Keywords :
pattern classification; security of data; classified vulnerability dataset assessment; quantitative risk assessment; system security; taxonomic analysis; vulnerability classification scheme; vulnerability database; vulnerability mitigation; Databases; Risk analysis; Security; Sociology; Software; Statistics; Taxonomy; Classification Scheme; Quantitative Security Evaluation; Taxonomy; Vulnerability; Vulnerability Database;
Conference_Titel :
Computer Sciences and Convergence Information Technology (ICCIT), 2011 6th International Conference on
Conference_Location :
Seogwipo
Print_ISBN :
978-1-4577-0472-7
