Vulnerability Assessment Enhancement for Middleware
نویسندگان
چکیده
Security on Grid computing is often an afterthought. However assessing security of middleware systems is of the utmost importance because they manage critical resources owned by different organizations. To fulfill this objective we use First Principles Vulnerability Assessment (FPVA), an innovative analystic-centric (manual) methodology that goes beyond current automated vulnerability tools. FPVA involves several stages for characterizing the analyzed system and its components. Based on the evaluation of several middleware systems, we have found that there is a gap between the initial and the last stages of FPVA, which is filled with the security practitioner expertise. We claim that this expertise is likely to be systematically codified in order to be able to automatically indicate which, and why, components should be assessed. In this paper we introduce key elements of our approach: Vulnerability graphs, Vulnerability Graph Analyzer, and a Knowledge Base of security configurations.
منابع مشابه
Vulnerability Assessment Enhancement for Middleware for Computing and Informatics
Security on Grid computing is often an afterthought. However assessing security of middleware systems is of the utmost importance because they manage critical resources owned by different organizations. To fulfill this objective we use First Principles Vulnerability Assessment (FPVA), an innovative analystic-centric (manual) methodology that goes beyond current automated vulnerability tools. FP...
متن کاملIncreasing Automated Vulnerability Assessment Accuracy on Cloud and Grid Middleware
The fast adaptation of Cloud computing has led to an increased speedy rate of novel information technology threats. The targets of these new threats involve from large scale distributed system, such as the Large Hadron Collider by the CERN, up to industrial (water, power, electricity, oil, gas, etc.) distributed systems, i.e. SCADA systems. The use of automated tools for vulnerability assessmen...
متن کاملAccess control in ultra-large-scale systems using a data-centric middleware
The primary characteristic of an Ultra-Large-Scale (ULS) system is ultra-large size on any related dimension. A ULS system is generally considered as a system-of-systems with heterogeneous nodes and autonomous domains. As the size of a system-of-systems grows, and interoperability demand between sub-systems is increased, achieving more scalable and dynamic access control system becomes an im...
متن کاملSpatial Assessment of Regional Environmental Vulnerability for Environmental Planning in the Eastern Region of Urmia Lake
Environment, development and sustainability are the three significant issues of worldwide concern. Environmental vulnerability and assessment of natural and anthropogenic activities impacts represent a comprehensive evaluation approach. The main purpose of this study is to present a comprehensive and novel framework in order to environmental vulnerability assessment using by spatial data a...
متن کاملEvaluation of Water Resources Exploitation in a Karst Region Using Intrinsic Vulnerability Assessment
Groundwater vulnerability assessment is of crucial importance for land use/cover management. Some methods have been proposed specifically for the karst hydrogeological settings. Among them, COP and PaPRIKa, as two commonly applied recent methods, were adopted for the resource vulnerability assessment of a humid temperate karst region, north of Iran. Comparison of water bacterial content and dis...
متن کامل