Shai, RubinAlderman, Ian D.Parter, David W.Vernon, Mary K.Flegel, UlrichMeier, Michael2019-10-162019-10-1620043-88579-375-Xhttps://dl.gi.de/handle/20.500.12116/29198We propose an infrastructure that helps a system administrator to identify a newly published vulnerability on the site hosts and to evaluate the vulnerability's threat with respect to the administrator's security priorities. The infrastructure foundation is the vulnerability semantics, a small set of attributes for vulnerability definition. We demonstrate that with a few attributes it is possible to define the majority of the known vulnerabilities in a way that (i) facilitates their accurate identification, and (ii) enables the administrator to rank the vulnerabilities found according to the organization's security priorities. A large scale experiment demonstrates that our infrastructure can find significant vulnerabilities even in a site with a high security awareness.enFoundations for intrusion preventionText/Conference Paper1617-5468