Vulnerability Prioritization, Root Cause Analysis, and Mitigation of Secure Data Analytic Framework Implemented with MongoDB on Singularity Linux Containers

Proceedings of the 2020 the 4th International Conference on Compute and Data Analysis Pub Date : 2020-03-09 DOI:10.1145/3388142.3388168

Akalanka Mailewa Dissanayaka, S. Mengel, L. Gittner, H. Khan

{"title":"Vulnerability Prioritization, Root Cause Analysis, and Mitigation of Secure Data Analytic Framework Implemented with MongoDB on Singularity Linux Containers","authors":"Akalanka Mailewa Dissanayaka, S. Mengel, L. Gittner, H. Khan","doi":"10.1145/3388142.3388168","DOIUrl":null,"url":null,"abstract":"A Vulnerability Management system is a disciplined, programmatic approach to discover and mitigate vulnerabilities in a system. While securing systems from data exploitation and theft, Vulnerability Management works as a cyclical practice of identifying, assessing, prioritizing, remediating, and mitigating security weaknesses. In this approach, root cause analysis is conducted to find solutions for the problematic areas in policy, process, and standards including configuration standards. Three major reasons make Vulnerability Assessment and Management a vital part in IT risk management. The reasons are, namely, 1. Persistent Threats - Attacks exploiting security vulnerabilities for financial gain and criminal agendas continue to dominate headlines, 2. Regulations - Many government and industry regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley (SOX), mandate rigorous vulnerability management practices, and 3. Risk Management - Mature organizations treat vulnerability assessment and management as a key risk management component [1]. Thus, as opposed to a reactive and technology-oriented approach, a well-organized and executed Vulnerability Management system is proactive and business-oriented. This research initially collects all the vulnerabilities associated with the Data Analytic Framework Implemented with MongoDB on Linux Containers (LXCs) by using the vulnerability analysis testbed with seven deferent analyzing tools. Thereafter, this research work first prioritizes all the vulnerabilities using \"Low\", \"Medium\", and \"High\" according to their severity level. Then, it discovers and analyzes the root cause of fifteen various vulnerabilities with different severities. Finally, according to each of the vulnerability root causes, this research proposes security techniques, to avoid or mitigate those vulnerabilities from the current system.","PeriodicalId":409298,"journal":{"name":"Proceedings of the 2020 the 4th International Conference on Compute and Data Analysis","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-03-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2020 the 4th International Conference on Compute and Data Analysis","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3388142.3388168","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 14

Abstract

A Vulnerability Management system is a disciplined, programmatic approach to discover and mitigate vulnerabilities in a system. While securing systems from data exploitation and theft, Vulnerability Management works as a cyclical practice of identifying, assessing, prioritizing, remediating, and mitigating security weaknesses. In this approach, root cause analysis is conducted to find solutions for the problematic areas in policy, process, and standards including configuration standards. Three major reasons make Vulnerability Assessment and Management a vital part in IT risk management. The reasons are, namely, 1. Persistent Threats - Attacks exploiting security vulnerabilities for financial gain and criminal agendas continue to dominate headlines, 2. Regulations - Many government and industry regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley (SOX), mandate rigorous vulnerability management practices, and 3. Risk Management - Mature organizations treat vulnerability assessment and management as a key risk management component [1]. Thus, as opposed to a reactive and technology-oriented approach, a well-organized and executed Vulnerability Management system is proactive and business-oriented. This research initially collects all the vulnerabilities associated with the Data Analytic Framework Implemented with MongoDB on Linux Containers (LXCs) by using the vulnerability analysis testbed with seven deferent analyzing tools. Thereafter, this research work first prioritizes all the vulnerabilities using "Low", "Medium", and "High" according to their severity level. Then, it discovers and analyzes the root cause of fifteen various vulnerabilities with different severities. Finally, according to each of the vulnerability root causes, this research proposes security techniques, to avoid or mitigate those vulnerabilities from the current system.

查看原文本刊更多论文

MongoDB在Singularity Linux容器上实现的安全数据分析框架的漏洞优先级、根本原因分析和缓解

漏洞管理系统是一种规范的、程序化的方法，用于发现和减轻系统中的漏洞。在保护系统免受数据利用和盗窃的同时，漏洞管理作为识别、评估、确定优先级、修复和减轻安全弱点的周期性实践。在这种方法中，进行根本原因分析，以找到策略、流程和标准(包括配置标准)中有问题区域的解决方案。主要有三个原因使得脆弱性评估和管理成为IT风险管理的重要组成部分。原因是:1。持续的威胁-利用安全漏洞获取经济利益和犯罪议程的攻击继续占据头条新闻。法规—许多政府和行业法规，如《健康保险可携带性和责任法案》(HIPAA)和《萨班斯-奥克斯利法案》(SOX)，要求严格的漏洞管理实践;风险管理——成熟的组织将脆弱性评估和管理视为风险管理的关键组成部分[1]。因此，与被动的和面向技术的方法相反，组织良好并执行良好的漏洞管理系统是主动的和面向业务的。本研究通过使用包含七种不同分析工具的漏洞分析测试平台，初步收集了与MongoDB on Linux Containers (LXCs)相关的所有漏洞。随后，本研究工作首先根据漏洞的严重程度，用“低”、“中”、“高”对所有漏洞进行优先级排序。然后，发现并分析了15个不同严重程度的漏洞的根本原因。最后，根据每个漏洞的根源，本研究提出了安全技术，以避免或减轻这些漏洞来自当前系统。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2020 the 4th International Conference on Compute and Data Analysis

自引率

0.00%

发文量