WEB应用漏洞扫描产品性能测试评分方法研究

2020 4th Annual International Conference on Data Science and Business Analytics (ICDSBA) Pub Date : 2020-09-01 DOI:10.1109/ICDSBA51020.2020.00095

Qicong Wu, Haohao Song, Ning Cao

{"title":"WEB应用漏洞扫描产品性能测试评分方法研究","authors":"Qicong Wu, Haohao Song, Ning Cao","doi":"10.1109/ICDSBA51020.2020.00095","DOIUrl":null,"url":null,"abstract":"False Positive Rate and False Negative Rate are two key indicators to evaluate the performance of WEB application vulnerability scanning products. Based on the research on the traditional scoring method of False Positive Rate and False Negative Rate, the improved test scoring method is proposed, and a more effective performance test scoring method which is based on the calculation method of risk value is designed in this paper. Assign values to vulnerabilities, and calculate the false positive and false negative through vulnerability weight.","PeriodicalId":354742,"journal":{"name":"2020 4th Annual International Conference on Data Science and Business Analytics (ICDSBA)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Research on Scoring Method of WEB Application Vulnerability Scanning Product Performance Test\",\"authors\":\"Qicong Wu, Haohao Song, Ning Cao\",\"doi\":\"10.1109/ICDSBA51020.2020.00095\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"False Positive Rate and False Negative Rate are two key indicators to evaluate the performance of WEB application vulnerability scanning products. Based on the research on the traditional scoring method of False Positive Rate and False Negative Rate, the improved test scoring method is proposed, and a more effective performance test scoring method which is based on the calculation method of risk value is designed in this paper. Assign values to vulnerabilities, and calculate the false positive and false negative through vulnerability weight.\",\"PeriodicalId\":354742,\"journal\":{\"name\":\"2020 4th Annual International Conference on Data Science and Business Analytics (ICDSBA)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 4th Annual International Conference on Data Science and Business Analytics (ICDSBA)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICDSBA51020.2020.00095\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 4th Annual International Conference on Data Science and Business Analytics (ICDSBA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDSBA51020.2020.00095","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

假阳性率和假阴性率是评估WEB应用漏洞扫描产品性能的两个关键指标。在对传统的假阳性率和假阴性率评分方法进行研究的基础上，提出了改进的测试评分方法，设计了一种基于风险值计算方法的更有效的性能测试评分方法。给漏洞赋值，通过漏洞权重计算出假阳性和假阴性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Research on Scoring Method of WEB Application Vulnerability Scanning Product Performance Test

False Positive Rate and False Negative Rate are two key indicators to evaluate the performance of WEB application vulnerability scanning products. Based on the research on the traditional scoring method of False Positive Rate and False Negative Rate, the improved test scoring method is proposed, and a more effective performance test scoring method which is based on the calculation method of risk value is designed in this paper. Assign values to vulnerabilities, and calculate the false positive and false negative through vulnerability weight.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 4th Annual International Conference on Data Science and Business Analytics (ICDSBA)

自引率

0.00%

发文量