Security Risk Scoring Incorporating Computers' Environment
Journal Title: International Journal of Advanced Computer Science & Applications - Year 2016, Vol 7, Issue 4
Abstract
A framework of a Continuous Monitoring System (CMS) is presented, having new improved capabilities. The system uses the actual real-time configuration of the system and environment characterized by a Configuration Management Data Base (CMDB) which includes detailed information of organizational database contents, security and privacy specifications. The Common Vulnerability Scoring Systems' (CVSS) algorithm produces risk scores incorporating information from the CMDB. By using the real updated environmental characteristics the system enables achieving accurate scores compared to existing practices. Framework presentation includes systems' design and an illustration of scoring computations.
Authors and Affiliations
Eli Weintraub
Keywords
Related Articles
- EP ID EP138617
- DOI 10.14569/IJACSA.2016.070423
- Views 102
- Downloads 0
Evolutionary Method of Population Classification According to Level of Social Resilience
Following the many natural disasters and global socio-economic upheavals of the 21st century, the concept of resilience is increasingly the subject of much research aimed at finding appropriate responses to these traumas...
Numerical Simulation on Damage Mode Evolution in Composite Laminate
The present work follows numerous numerical simulation on the stress field analysis in a cracked cross-ply laminate. These results lead us to elaborate an energy criterion. This criterion is based on the computation of t...
The Visual Web User Interface Design in Augmented Reality Technology
Upon the popularity of 3C devices, the visual creatures are all around us, such the online game, touch pad, video and animation. Therefore, the text-based web page will no longer satisfy users. With the popularity of web...
Applying Floyd’s Inductive Assertions Method for Verification of Generalized Net Models Without Temporal Components
Generalized Nets are extensions of Petri Nets. They are a suitable tool for describing real sequential and parallel processes in different areas. The implementation of correct Generalized Nets models is a task of great i...
Active and Reactive Power Control of a Variable Speed Wind Energy Conversion System based on Cage Generator
This manuscript presents the modeling and control design for a variable speed wind energy conversion system (VS-WECS). This control scheme is based on three-phase squirrel cage induction generator driven by a horizontal-...