Journal of Information Security Reserach ›› 2023, Vol. 9 ›› Issue (E1): 183-.

Online:2023-10-17 Published:2023-11-07

一种改进的系统漏洞风险评估算法

陈芳仪王虎

(中国矿业大学计算机科学与技术学院江苏徐州221000)

通讯作者: 陈芳仪主要研究方向为信息系统风险评估. 1078434785@qq.com
作者简介:陈芳仪主要研究方向为信息系统风险评估. 1078434785@qq.com 王虎硕士，副教授.主要研究方向为信息系统漏洞挖掘与分析. wanghu@cumt.edu.cn

Abstract

摘要： CVSS(通用漏洞评分系统)被广泛应用于评估漏洞风险并生成反映其严重性的分数，但CVSS框架存在只能提供单个漏洞的严重性和影响分值，不能评估整个系统漏洞风险.因此在CVSS的基础上提出一种改进的系统漏洞风险评估算法，将各独立的漏洞风险值聚合为一个总的指标值以反映整个系统漏洞风险情况，帮助安全管理人员衡量整个系统漏洞风险，提高网络安全管理的效率.

关键词: 漏洞, 风险评估, 通用漏洞评分系统

CLC Number:

TP393

陈芳仪, 王虎, . 一种改进的系统漏洞风险评估算法[J]. 信息安全研究, 2023, 9(E1): 183-.

[1]	. Intrusion Detection Method Based on Multiscale Spatialtemporal Residual Network [J]. Journal of Information Security Reserach, 2023, 9(11): 1045-.
[2]	. Title Burden of Proof of the Signatory and the Relying Party in Electronic Signature Disputes [J]. Journal of Information Security Reserach, 2023, 9(11): 1096-.
[3]	. [J]. Journal of Information Security Reserach, 2023, 9(E1): 16-.
[4]	. [J]. Journal of Information Security Reserach, 2023, 9(E1): 34-.
[5]	. A Vulnerability Detecting Approach Based on Sanitizer Identification for Embedded Devices [J]. Journal of Information Security Reserach, 2023, 9(10): 954-.
[6]	. A CNN-LSTM Method Based on Attention Mechanism for In vehicle CAN Bus Intrusion Detection [J]. Journal of Information Security Reserach, 2023, 9(10): 961-.
[7]	. A Noisy Label Detection Method for Encrypting Malicious Traffic [J]. Journal of Information Security Reserach, 2023, 9(10): 1023-.
[8]	. [J]. Journal of Information Security Reserach, 2023, 9(E1): 141-.
[9]	. [J]. Journal of Information Security Reserach, 2023, 9(E1): 149-.
[10]	. [J]. Journal of Information Security Reserach, 2023, 9(E1): 153-.
[11]	. Detection for Linear Deception Attacks in Wireless Network Transmission [J]. Journal of Information Security Reserach, 2023, 9(9): 892-.
[12]	. The Innovation and Practice of the Talent Training Mode of Cyber Security with the Features of ScienceEducation Integration [J]. Journal of Information Security Reserach, 2023, 9(9): 921-.
[13]	. Research on Active Defense Method of Network Security Under APT Organization Attack Behavior [J]. Journal of Information Security Reserach, 2023, 9(5): 423-.
[14]	. A Method and Practice of Internet of Vehicle OTA Based on CA and KMS [J]. Journal of Information Security Reserach, 2023, 9(5): 469-.
[15]	. Research on Intranet Security Integrated Protection Architecture in Energy Enterprises Under Complex Network Threat Environment [J]. Journal of Information Security Reserach, 2023, 9(4): 390-.

一种改进的系统漏洞风险评估算法

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics