BROWSE
Detail
Journal Article
PKG-VUL: Security Vulnerability Evaluation and Patch Framework for Package-Based Systems
- Authors
- Jong Hyouk Lee, Seon Gyoung Sohn, Beom Hwan Chang, Tai Myoung Chung
- Issue Date
- 2009-10
- Citation
- ETRI Journal, v.31, no.5, pp.554-564
- ISSN
- 1225-6463
- Publisher
- 한국전자통신연구원 (ETRI)
- Language
- English
- Type
- Journal Article
- Abstract
- In information security and network management, attacks based on vulnerabilities have grown in importance. Malicious attackers break into hosts using a variety of techniques. The most common method is to exploit known vulnerabilities. Although patches have long been available for vulnerabilities, system administrators have enerally been reluctant to patch their hosts immediately because they perceive the patches to be annoying and complex. To solve these problems, we propose a security vulnerability evaluation and patch framework called PKG-VUL, which evaluates the software installed on hosts to decide whether the hosts are vulnerable and then applies patches to vulnerable hosts. All these operations are accomplished by the widely used simple network management protocol (SNMP). Therefore, system administrators can easily manage their vulnerable hosts through PKG-VUL included in the SNMP-based network management systems as a module. The evaluation results demonstrate the applicability of PKG-VUL and its performance in terms of devised criteria.
- KSP Keywords
- Management system, Security vulnerabilities, Simple Network Management Protocol(SNMP), based system, information security, vulnerability evaluation