A novel approach to continuous CVE analysis on enterprise operating systems for system vulnerability assessment
Küçük Resim Yok
Tarih
2022
Dergi Başlığı
Dergi ISSN
Cilt Başlığı
Yayıncı
Springer Science and Business Media B.V.
Erişim Hakkı
info:eu-repo/semantics/closedAccess
Özet
Advances in information and technology have provided great opportunities and conveniences for human life. However, with this process, attackers have switched to cyberspace due to various factors such as anonymity, easy attack tools, and non-deterrent penalties. For this reason, various methods have been developed to protect systems from cyber-attacks. One of the most important methods is the continuity-based vulnerability analysis of the systems and the network created by the systems, even for emerging threats. In this study, the current and comprehensive list of vulnerabilities created by combining the data obtained from different CVE sources is compared with the packages on the operating system. In this way, it is possible to obtain information about the system’s current openness status and take precautions. The analyzes have been carried out on Ubuntu operating system; however, the study can be adapted to other operating systems and larger systems by following the implementation phases of the proposed method. © 2022, The Author(s), under exclusive licence to Bharati Vidyapeeth's Institute of Computer Applications and Management.
Açıklama
Anahtar Kelimeler
CVE; Cyber security; Security analysis; Vulnerability assessment; Vulnerability database
Kaynak
International Journal of Information Technology (Singapore)
WoS Q Değeri
Scopus Q Değeri
Q2
Cilt
14
Sayı
3