Publication | Closed Access
Security Data Mining in an Ontology for Vulnerability Management
35
Citations
17
References
2009
Year
Unknown Venue
EngineeringInformation SecurityOntology EngineeringSemantic TechnologySoftware EngineeringSemantic WebVulnerability AnalysisSecurity ModellingVulnerability Assessment (Computing)Data ScienceData MiningSoftware Vulnerability ManagementSecurity ManagementSoftware DesignData SecurityInformation Security ManagementSecuritySecurity MeasurementSecurity Data Mining
Information security is a complex field whose vast data volume overwhelms professionals and managers. The paper aims to apply semantic technology to software vulnerability management. The authors use semantic technologies to formally model external threats and internal vulnerabilities, enabling inference and high‑level decision making, and they design an ontology with reasoning examples for vulnerability analysis. They constructed a vulnerability ontology that defines key concepts and relationships, offering a promising route to successful security automation via semantic technologies.
Information security is such a complex topic that the sheer scope and volume of available security data overwhelms security professionals and managers alike. This paper discusses the rationale of applying semantic technology to information security with a focus on software vulnerability management. With semantic technologies, we can describe the pattern of external threats and internal vulnerabilities formally and precisely. Based on this, we can make inference and make high-level decisions accordingly. We have constructed an ontology for security vulnerabilities, which defines the key concepts in vulnerability management and their relationships. We introduce the design and reasoning within the ontology with examples in vulnerability analysis and assessment. The result of this paper provides a promising pathway to making security automation successful through semantic technologies.
| Year | Citations | |
|---|---|---|
Page 1
Page 1