Network security vulnerability prioritization and repair

Network security vulnerability prioritization and repair

The invention provides a system and method for assessing one or more network security vulnerabilities to establish a priority metric for each of one or more network security vulnerabilities. The method comprises the steps of constructing a network security attack mode for each of one or more network...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: BALTES KEVIN M, LEBOEUF KARL B
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention provides a system and method for assessing one or more network security vulnerabilities to establish a priority metric for each of one or more network security vulnerabilities. The method comprises the steps of constructing a network security attack mode for each of one or more network security vulnerabilities; determining one or more resource metrics for each of a plurality of malicious actions for each of one or more network security vulnerabilities; obtaining one or more final resource metrics for each of the resource metrics for each of the one or more network security vulnerabilities based on evaluated one or more resource metrics; obtaining an impact metric for each of the one or more network security vulnerabilities, wherein the impact metric indicates a degree of damage that may be caused by the network security vulnerabilities; and calculating network security priority based on the impact metric and one or more final resource metrics for each of the multiple network security vulnerabili