Community Based Platform for Vulnerability Categorization

Autoři	KOMÁRKOVÁ Jana SADLEK Lukáš LAŠTOVIČKA Martin
Rok publikování	2018
Druh	Článek ve sborníku
Konference	NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium
Fakulta / Pracoviště MU	Ústav výpočetní techniky
Citace
www	https://ieeexplore.ieee.org/document/8406125
Doi	https://doi.org/10.1109/NOMS.2018.8406125
Klíčová slova	Vulnerability Categorization;CVSS;Impact assessment
Přiložené soubory	2018-NOMS-Community-Based-Platform-for-Vulnerability-Categorization-paper.pdf 2018-NOMS-Community-Based-Platform-for-Vulnerability-Categorization-poster.pdf
Popis	Many approaches, such as attack graphs, require knowledge of vulnerability's properties such as impact, prerequisities, and exploitability. Currently, those properties are either categorized manually or too roughly. We present a program for granular, automated categorization of vulnerability. Further, we present a platform supporting researchers by gathering and sharing raw data about vulnerabilities and community labeled datasets. The source code of our categorization program is available on GitHub.
Související projekty:	Výzkum nástrojů pro hodnocení kybernetické situace a podporu rozhodování CSIRT týmů při ochraně kritické infrastruktury