Enhanced Vulnerability Ontology for Information Risk Assessment and Dependability Management

2010 Third International Conference on Dependability Pub Date : 2010-07-18 DOI:10.1109/DEPEND.2010.22

M. Aime, Fabio Guasconi

引用次数: 5

Abstract

Security vulnerabilities play an increasing role within dependability procedures for information systems. However, traditional vulnerability models present several general shortcomings when matched with today requirements. To overcome these limits, we propose a vulnerability ontology based on three main enhancements: deeper integration with system asset ontology, better modelling of cause-effect relationships, and deeper integration with dependability control ontology.

查看原文本刊更多论文

面向信息风险评估与可靠性管理的改进漏洞本体

安全漏洞在信息系统的可靠性过程中扮演着越来越重要的角色。然而，传统的漏洞模型在与当今的需求相匹配时存在一些普遍的缺点。为了克服这些限制，我们提出了一个基于三个主要增强的漏洞本体:与系统资产本体的深度集成，更好的因果关系建模，以及与可靠性控制本体的深度集成。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2010 Third International Conference on Dependability

自引率

0.00%

发文量