The method of optimizing the automatic vulnerability validation

Authors:
Eugene Tumoyan;Daria Kavchuk
Affiliations:
Southern Federal University, Taganrog, Russia;Southern Federal University, Taganrog, Russia
Venue:
Proceedings of the Fifth International Conference on Security of Information and Networks
Year:
2012

Citing 3
Cited 0

Formal Security Analysis with Interacting State Machines

ESORICS '02 Proceedings of the 7th European Symposium on Research in Computer Security
Two Formal Analys s of Attack Graphs

CSFW '02 Proceedings of the 15th IEEE workshop on Computer Security Foundations
Automated Generation and Analysis of Attack Graphs

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Up-to-date security scanners perform vulnerability detection and identification on the basis of indirect features. Exploitation instruments (for example, Metasploit Framework), which are used for further vulnerability validation, launch exploits consequently taking into account simple criteria, such as service, target operating system, exploit rank. Due to that the validation process takes plenty of time. The aim of this work is to develop the method and program system of automatic vulnerability validation.