Ontology-based Automation of Penetration Testing

Ge Chu, Alexei Lisitsa

2020

Abstract

Ontology is a widely used knowledge representation formalism in artificial intelligence area in recent years. In this paper, we propose an ontology-based automated penetration testing approach. We use protege to create the ontology, which is constructed based on attack taxonomy. SWRL rules are used to create penetration testing knowledge base and reasoning. We use agent-based(BDI) framework to achieve the process of automated penetration testing.

Download


Paper Citation


in Harvard Style

Chu G. and Lisitsa A. (2020). Ontology-based Automation of Penetration Testing. In Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-399-5, pages 713-720. DOI: 10.5220/0009171007130720


in Bibtex Style

@conference{icissp20,
author={Ge Chu and Alexei Lisitsa},
title={Ontology-based Automation of Penetration Testing},
booktitle={Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2020},
pages={713-720},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009171007130720},
isbn={978-989-758-399-5},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Ontology-based Automation of Penetration Testing
SN - 978-989-758-399-5
AU - Chu G.
AU - Lisitsa A.
PY - 2020
SP - 713
EP - 720
DO - 10.5220/0009171007130720