25-08-2017, 09:32 PM
Network Security Assessment.ppt (Size: 190 KB / Downloads: 50)
The lack of a standard gauge for quantifying computer system vulnerability is a hindrance to communicating information about vulnerabilities. The inability to address this issue through uniform semantics often leads to uncoordinated efforts. This presents a feasible approach for resolving this problem by introducing a standardized assessment. It introduces a method, termed the System Vulnerability Index (SVI) that analyzes a number of factors that affect security. These factors are evaluated and combined, through the use of special rules, to provide a measure of vulnerability. The strength of this method is in its abstraction of the problem, which makes it applicable to various operating systems and hardware implementations. User and super user actions, as well as clues to a potentially breached state of security, serve as the basis for the security relevant factors. Facts for Network Security Assessment are presented in a form suitable for implementation in a rule-based expert system