A logic-based model to support alert correlation in intrusion detection
Information Fusion
Design of hybrid network discovery module for detecting client applications and ActiveX controls
ICCSA'07 Proceedings of the 2007 international conference on Computational science and Its applications - Volume Part II
| Hi-index | 0.00 |
Detailed and reliable knowledge of the characteristics of an information system is becoming a very important feature for operational security. Unfortunately, vulnerability assessment tools have important side effects on the monitored information systems. In this paper, we propose an approach to gather or deduce information similar to vulnerability assessment reports, based on passive network observation. Information collected goes beyond classic server vulnerability assessment, enabling compliance verification of desktop clients.