Analytical attack modeling and security assessment based on the common vulnerability scoring system

Analytical attack modeling and security assessment based on the common vulnerability scoring system

The paper analyzes an approach to the analytical attack modeling and security assessment on the base of the Common Vulnerability Scoring System (CVSS) format, considering different modifications that appeared in the new version of the CVSS specification. The common approach to the analytical attack...

Full description

Bibliographic Details
Main Authors: Elena Doynikova, Andrey Chechulin, Igor Kotenko
Format: Article
Language:English
Published: FRUCT 2017-04-01
Series:Proceedings of the XXth Conference of Open Innovations Association FRUCT
Subjects:
Analytical Attack Modeling
Security Assessment
Common Vulnerability Scoring System
Attack Graphs
Online Access:https://fruct.org/publications/fruct20/files/Doy.pdf
Description
Summary:The paper analyzes an approach to the analytical attack modeling and security assessment on the base of the Common Vulnerability Scoring System (CVSS) format, considering different modifications that appeared in the new version of the CVSS specification. The common approach to the analytical attack modeling and security assessment was suggested by the authors earlier. The paper outlines disadvantages of previous CVSS version that influenced negatively on the results of the attack modeling and security assessment. Differences between new and previous CVSS versions are analyzed. Modifications of the approach to the analytical attack modeling and security assessment that follow from the CVSS modifications are suggested. Advantages of the modified approach are described. Case study that illustrates enhanced approach is provided.
ISSN:2305-7254
2343-0737

Similar Items