A5037809100- Information and Cyber Security
- Web Application Security Vulnerabilities
- Software Engineering Research
- Network Security and Intrusion Detection
- Software Reliability and Analysis Research
National University of Defense Technology
2021-2023
A plethora of software vulnerabilities are exposed daily, posing a severe threat to the Internet. It is almost impossible for security experts or developers deal with all vulnerabilities. Therefore, it imperative rapidly assess severity vulnerability be able select which one should given preferential attention. CVSS now industry’s de facto evaluation standard, calculated quantitative formula measure vulnerability. The consists several metrics related vulnerability’s features. Security need...
With the vigorous development of Internet, ecosystem cyber-physical systems is also developing at a high speed, but may be accompanied by unknown vulnerabilities in process concrete implementation. Thus, number has been increasing year year. The vulnerability evaluation speed cannot keep up with exposure speed. traditional manual method can no longer effectively deal such large-scale vulnerabilities, resulting backlog vulnerabilities. Therefore, results have certain lag. To address this...
Vulnerability assessment is one of the important topics in cyberspace security, which mainly includes threat assessment, risk level vulnerability rating score, etc. CVSS (Common Scoring System) a commonly used method academia and industry. However, has following problems. First, not very versatile practical scoring. The value metrics will be different depending on people with domain knowledge working experience, lead to error final score. Second, weight more subjective. To reduce scoring...