Foundations for intrusion prevention
Author:
Abstract
We propose an infrastructure that helps a system administrator to identify a newly published vulnerability on the site hosts and to evaluate the vulnerability's threat with respect to the administrator's security priorities. The infrastructure foundation is the vulnerability semantics, a small set of attributes for vulnerability definition. We demonstrate that with a few attributes it is possible to define the majority of the known vulnerabilities in a way that (i) facilitates their accurate identification, and (ii) enables the administrator to rank the vulnerabilities found according to the organization's security priorities. A large scale experiment demonstrates that our infrastructure can find significant vulnerabilities even in a site with a high security awareness.
- Citation
- BibTeX
Shai, R., Alderman, I. D., Parter, D. W. & Vernon, M. K.,
(2004).
Foundations for intrusion prevention.
In:
Flegel, U. & Meier, M.
(Hrsg.),
Detection of intrusions and malware & vulnerability assessment, GI SIG SIDAR workshop, DIMVA 2004.
Bonn:
Gesellschaft für Informatik e.V..
(S. 143-160).
@inproceedings{mci/Shai2004,
author = {Shai, Rubin AND Alderman, Ian D. AND Parter, David W. AND Vernon, Mary K.},
title = {Foundations for intrusion prevention},
booktitle = {Detection of intrusions and malware & vulnerability assessment, GI SIG SIDAR workshop, DIMVA 2004},
year = {2004},
editor = {Flegel, Ulrich AND Meier, Michael} ,
pages = { 143-160 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
author = {Shai, Rubin AND Alderman, Ian D. AND Parter, David W. AND Vernon, Mary K.},
title = {Foundations for intrusion prevention},
booktitle = {Detection of intrusions and malware & vulnerability assessment, GI SIG SIDAR workshop, DIMVA 2004},
year = {2004},
editor = {Flegel, Ulrich AND Meier, Michael} ,
pages = { 143-160 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
Dateien | Groesse | Format | Anzeige | |
---|---|---|---|---|
GI.Proceedings.46-10.pdf | 135.9Kb | View/ |
Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback
More Info
ISBN: 3-88579-375-X
ISSN: 1617-5468
xmlui.MetaDataDisplay.field.date: 2004
Language:
(en)

Content Type: Text/Conference Paper