22nd International Conference on Advanced Information Networking and Applications (aina 2008)
Fortification of IT Security by Automatic Security Advisory Processing
March 25-March 28
ISBN: 978-0-7695-3095-6
DOI Bookmark:
http://doi.ieeecomputersociety.org/10.1109/AINA.2008.69
The past years have seen the rapid increase of security related incidents in the field of information technology. IT infrastructures in the commercial as well as in the governmental sector are becoming evermore heterogeneous which increases the complexity of handling and maintaining an adequate security level. Especially organizations which are hosting and processing highly sensitive data are obligated to establish a holistic company-wide security approach. We propose a novel security concept to reduce this complexity by automatic assessment of security advisories. A central entity collects vulnerability information from various sources, converts it into a standardized and machine-readable format and distributes it to its subscribers. The subscribers are then able to automatically map the vulnerability information to the ontological stored infrastructure data to visualize newly-discovered software vulnerabilities.The automatic analysis of vulnerabilities decreases response times and permits precise response to new threats and vulnerabilities, thus decreasing the administration complexity and increasing the IT security level.
Citation:
Stefan Fenz, Andreas Ekelhart, Edgar Weippl, "Fortification of IT Security by Automatic Security Advisory Processing," aina, pp.575-582, 22nd International Conference on Advanced Information Networking and Applications (aina 2008), 2008
Usage of this product signifies your acceptance of the
Terms of Use.
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb