Foundations for Intrusion Prevention
| dc.contributor.author | Alderman, Ian D. | |
| dc.contributor.author | Parter, David W. | |
| dc.contributor.author | Rubin, Shai | |
| dc.contributor.author | Vernon, Mary K. | |
| dc.date.accessioned | 2006-08-23T10:31:21Z | |
| dc.date.available | 2006-08-23T10:31:21Z | |
| dc.date.issued | 2004-07 | |
| dc.description.abstract | We propose an infrastructure that helps a system administrator to identify a newly published vulnerability on the site hosts and to evaluate the vulnerability’s threat with respect to the administrator’s security priorities. The infrastructure foundation is the vulnerability semantics, a small set of attributes for vulnerability definition. We demonstrate that with a few attributes it is possible to define the majority of the known vulnerabilities in a way that (i) facilitates their accurate identification, and (ii) enables the administrator to rank the vulnerabilities found according to the organization’s security priorities. A large scale experiment demonstrates that our infrastructure can find significant vulnerabilities even in a site with a high security awareness. | de |
| dc.format.extent | 475614 bytes | |
| dc.format.mimetype | application/pdf | |
| dc.identifier.citation | Rubin, Shai; Alderman, Ian D.; Parter, David W.; Vernon, Mary K.: Foundations for Intrusion Prevention. In Flegel, U.; Meier, M. (Eds.): Proc. of the International GI Workshop on Detection of Intrusions and Malware & Vulnerability Assessment, number P-46 in Lecture Notes in Informatics, pp. 143-160, Dortmund, Germany, July 2004, Köllen Verlag; ISBN 3-88579-365-X. | en |
| dc.identifier.uri | http://hdl.handle.net/2003/22840 | |
| dc.identifier.uri | http://dx.doi.org/10.17877/DE290R-14462 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik | de |
| dc.relation.ispartof | DIMVA 2004, July 6-7, Dortmund, Germany | en |
| dc.relation.ispartofseries | Lecture Notes in Informatics;P-46 | en |
| dc.subject | Intrusion Prevention | en |
| dc.subject.ddc | 004 | |
| dc.title | Foundations for Intrusion Prevention | en |
| dc.type | Text | de |
| dc.type.publicationtype | conferenceObject | en |
| dcterms.accessRights | open access |