Risk Evaluation by Vulnerability Detection Tools for IT Department of the Royal Thai Army

机译：泰国皇家陆军IT部门通过漏洞检测工具进行的风险评估

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Security is always a main concern in any organization networks. Securitytest is an important step to ensure that the organization network isregularly inspected and well prevented from attackers. However, audit and analysis are not only time-consuming procedure but also depended to human expertise. Automatic vulnerability detection ispreferred asa proactive tool for security professionals to identify vulnerabilities before an adversary can exploit them. Typically, there are two types of vulnerability detection tools: Hardware Appliances and Software Applications.However, vulnerability detection tools have some important weaknesses. They only identify surface vulnerabilities and are unable to address the overall risk level of the scanned network. Network risks arebasically divided into 4 levels. Nevertheless, they often use different standard for risk level classification whichhabitually related to some organizations or vendors. Henceforth, this paper presents "Network Risk Metric" as an unbiased risk evaluation from several vulnerability detection tools. In this paper, NetClarity (hardware-based) and Nessus (software-based) are implemented on two networks from an IT department of the Royal Thai Army (RTA). Then, the proposed metric is applied for evaluating overall network risk from both vulnerability detection tools.

机译：安全始终是任何组织网络中的主要关注点。安全测试是确保定期检查组织网络并防止其受到攻击者的重要步骤。但是，审计和分析不仅是耗时的过程，而且还取决于人类的专业知识。自动漏洞检测是安全专业人员在攻击者利用漏洞之前识别漏洞的一种主动工具。通常，漏洞检测工具有两种类型：硬件设备和软件应用程序。但是，漏洞检测工具有一些重要的弱点。它们仅识别表面漏洞，无法解决被扫描网络的总体风险级别。网络风险基本上分为四个级别。但是，他们经常使用不同的风险等级分类标准，这些标准通常与某些组织或供应商有关。此后，本文将“网络风险指标”作为几种漏洞检测工具的公正评估。在本文中，NetClarity（基于硬件）和Nessus（基于软件）是在泰国皇家陆军（RTA）的IT部门的两个网络上实现的。然后，将所提出的度量标准用于评估来自两个漏洞检测工具的整体网络风险。

著录项

来源
《Recent advances in communications, circuits and technological innovation》|2012年|286-292|共7页
会议地点 Paris(FR)
作者
ANIWAT HEMANIDHI; SANONCHIMMANEE; PARINYA SANGUANSAT;
展开▼
作者单位

Facultyof Information Technology RangsitUniversity 52/347 Muang-Ake, Muang, Pathumthani 12000 THAILAND;

Faculty of Information Technology Rangsit University 52/347 Muang-Ake, Muang, Pathumthani 12000 THAILAND;

Faculty of Engineering and Technology Panyapiwat Institute of Management 85/1 Moo 2, Nonthaburi 11120 THAILAND;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Risk Evaluation; Vulnerability Detection; Security Metrics; Network Security; Network Threat;

机译：风险评估；漏洞检测；安全指标；网络安全;网络威胁;

相似文献

外文文献
中文文献
专利

1. Risk Factors Affecting Condom Use among Royal Thai Army Conscripts in Thailand [J] . Phrutthinun Surit, Wutthichai Jariya, Ning Zheng, World Journal of AIDS . 2017,第2期

机译：影响泰国皇家泰国军队法令中避孕套的危险因素
2. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [J] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi Military Medical Research . 2020,第1期

机译：泰国皇家军队静态线降落伞训练损伤的发病率和风险因素
3. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [J] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi 军事医学研究：英文版 . 2020,第004期

机译：泰国皇家军队静态线降落伞训练损伤的发病率和风险因素
4. Risk Evaluation by Vulnerability Detection Tools for IT Department of the Royal Thai Army [C] . ANIWAT HEMANIDHI, SANONCHIMMANEE, PARINYA SANGUANSAT European Conference of Circuits Technology nd Devices . 2013

机译：诸如泰国皇家军队的IT部门漏洞检测工具的风险评估
5. Evaluation and review of the safety management system implementation in the Royal Thai Air Force. [D] . Chaiwan, Sakkarin. 2015

机译：评估和审查泰国皇家空军实施的安全管理体系。
6. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [O] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi 2020

机译：泰国皇家陆军静态降落伞训练期间与伤害相关的发病率和危险因素
7. Incidence and risk factors associated with injuries during static line parachute training in Royal Thai Army [O] . Watcharaphat Maneechaeye, Kathawoot Deepreecha, Wiroj Jiamjarasrangsi 2020

机译：泰国皇家军队静态线降落伞训练损伤的发病率和风险因素

Risk Evaluation by Vulnerability Detection Tools for IT Department of the Royal Thai Army

摘要

著录项

相似文献

相关主题

期刊订阅