{"title":"Vulnerability assessment system (VAS)","authors":"Cabin Ying, A. Tsai, H. Yu","doi":"10.1109/CCST.2003.1297596","DOIUrl":null,"url":null,"abstract":"Institute for Information Industry is currently handling a project for National Information and Communication Security Taskforce of Executive Yuan. One of the missions of this project is to conduct information security assessments for the current security situation of the national network. Although there are already many commercial software packages on the market to help diagnose security vulnerabilities, but most of these software packages are aiming for small to medium size organizations and only for one single enterprise infrastructure. Therefore, they are not able to perform an over-organization, integrated vulnerability assessment analysis. Moreover, the vulnerability assessment is only the beginning step of solving information security problems; there is a need for a comprehensive management mechanism for information security vulnerability assessment, to let IT staff precisely resolve the security problems of the information systems. As the result, the design goal of VAS is to provide assistance to perform a comprehensive management mechanism for information security vulnerability assessment.","PeriodicalId":344868,"journal":{"name":"IEEE 37th Annual 2003 International Carnahan Conference onSecurity Technology, 2003. Proceedings.","volume":"61 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-10-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE 37th Annual 2003 International Carnahan Conference onSecurity Technology, 2003. Proceedings.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CCST.2003.1297596","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 5
Abstract
Institute for Information Industry is currently handling a project for National Information and Communication Security Taskforce of Executive Yuan. One of the missions of this project is to conduct information security assessments for the current security situation of the national network. Although there are already many commercial software packages on the market to help diagnose security vulnerabilities, but most of these software packages are aiming for small to medium size organizations and only for one single enterprise infrastructure. Therefore, they are not able to perform an over-organization, integrated vulnerability assessment analysis. Moreover, the vulnerability assessment is only the beginning step of solving information security problems; there is a need for a comprehensive management mechanism for information security vulnerability assessment, to let IT staff precisely resolve the security problems of the information systems. As the result, the design goal of VAS is to provide assistance to perform a comprehensive management mechanism for information security vulnerability assessment.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
