Environmental Aware Vulnerability Scoring

Andreas Eitel

Abstract

When assessing the CVSS value of a vulnerability, the Environmental Metrics are often ignored. There are several reasons for this. However, this score is essential for the prioritization of vulnerabilities. The author proposes an approach that should generate the environmental score systematically and highly automated. For this purpose, various information about the systems and the network is needed, which should be managed in a model. An algorithm uses the linked information to automatically determine the Environmental Metrics. Experts without a security background should thus be able to determine this score in the same way as experts. The results should also be repeatable and independent of the evaluator.

Download


Paper Citation


in Harvard Style

Eitel A. (2020). Environmental Aware Vulnerability Scoring.In Proceedings of the 5th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS, ISBN 978-989-758-426-8, pages 478-485. DOI: 10.5220/0009839104780485


in Bibtex Style

@conference{iotbds20,
author={Andreas Eitel},
title={Environmental Aware Vulnerability Scoring},
booktitle={Proceedings of the 5th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,},
year={2020},
pages={478-485},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009839104780485},
isbn={978-989-758-426-8},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 5th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,
TI - Environmental Aware Vulnerability Scoring
SN - 978-989-758-426-8
AU - Eitel A.
PY - 2020
SP - 478
EP - 485
DO - 10.5220/0009839104780485