| 题名 | Vulnerabilities scoring approach for cloud saas |
| 作者 | |
| 发表日期 | 2016-07-20 |
| 会议名称 | Proceedings - 2015 IEEE 12th International Conference on Ubiquitous Intelligence and Computing, 2015 IEEE 12th International Conference on Advanced and Trusted Computing, 2015 IEEE 15th International Conference on Scalable Computing and Communications, 2015 IEEE International Conference on Cloud and Big Data Computing, 2015 IEEE International Conference on Internet of People and Associated Symposia/Workshops, UIC-ATC-ScalCom-CBDCom-IoP 2015 |
| 会议录名称 | Proceedings - 2015 IEEE 12th International Conference on Ubiquitous Intelligence and Computing, 2015 IEEE 12th International Conference on Advanced and Trusted Computing, 2015 IEEE 15th International Conference on Scalable Computing and Communications, 2015 IEEE International Conference on Cloud and Big Data Computing, 2015 IEEE International Conference on Internet of People and Associated Symposia/Workshops, UIC-ATC-ScalCom-CBDCom-IoP 2015
 |
| 页码 | 1339-1347 |
| 会议日期 | 2015-08-10——2015-08-10 |
| 会议地点 | chn,Beijing |
| 摘要 | It is known to be full of challenges to score vulnerabilities of cloud services developed by different third-party providers. Although there have been a few systems for scoring vulnerabilities (e.g., CVSS) of many existing softwares, most of them are unable to be leveraged to score vulnerabilities in cloud services, because they fail to consider some important factors located in the clouds such as business context (i.e., Dependency relationships between services). This paper presents VScorer, a novel security framework to score vulnerabilities in various cloud services based on different given requirements. By inputting concrete business context and security requirement into VScorer, cloud provider can get a ranking list of vulnerabilities in the business based on the given security requirement. Following the ranking list, cloud provider is able to patch the most critical vulnerabilities first. We developed a prototype and demonstrate VScorer can work better than current representative vulnerability scoring system CVSS. |
| DOI | 10.1109/UIC-ATC-ScalCom-CBDCom-IoP.2015.242 |
| URL | 查看来源 |
| 语种 | 英语English |
| Scopus入藏号 | 2-s2.0-84983455849 |
| 引用统计 | |
| 文献类型 | 会议论文 |
| 条目标识符 | https://repository.uic.edu.cn/handle/39GCC9TT/13507 |
| 专题 | 个人在本单位外知识产出 |
| 作者单位 | School of EECS, Peking University, China, Key Laboratory of High Confidence Software Technologies, Ministry of Education, China |
| 推荐引用方式 GB/T 7714 | Li,Zhou,Tang,Cong,Hu,Jianbinet al. Vulnerabilities scoring approach for cloud saas[C], 2016: 1339-1347. |
| 条目包含的文件 | 条目无相关文件。 | |||||
| 个性服务 |
| 查看访问统计 |
| 谷歌学术 |
| 谷歌学术中相似的文章 |
| [Li,Zhou]的文章 |
| [Tang,Cong]的文章 |
| [Hu,Jianbin]的文章 |
| 百度学术 |
| 百度学术中相似的文章 |
| [Li,Zhou]的文章 |
| [Tang,Cong]的文章 |
| [Hu,Jianbin]的文章 |
| 必应学术 |
| 必应学术中相似的文章 |
| [Li,Zhou]的文章 |
| [Tang,Cong]的文章 |
| [Hu,Jianbin]的文章 |
| 相关权益政策 |
| 暂无数据 |
| 收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
学校主页 
图书馆
修改评论