论文信息 - Optimizing the Sequence of Vulnerability Scanning Injections

Optimizing the Sequence of Vulnerability Scanning Injections

Security Operation Centers face human resource bottleneck in scaling the operations. We attempt to address the issue by developing a framework to prioritize the operational actions, especially in vulnerability scanning and penetration testing tasks. More specifically, we prioritized scanning injections in the order of expected rewards, calculated with the combination of priors and injection-to-injection similarity measures. The framework is shown to reduce the total number of actions while maintaining the amount of vulnerabilities revealed.

Koichi Funaya | Samir Bajaj | Kumar Sharad | Alok Srivastava

[1] Lionel C. Briand,et al. Web Application Vulnerability Prediction Using Hybrid Program Analysis and Machine Learning , 2015, IEEE Transactions on Dependable and Secure Computing.

[2] Olivier Buffet,et al. POMDPs Make Better Hackers: Accounting for Uncertainty in Penetration Testing , 2012, AAAI.

[3] Mark S. Boddy,et al. Course of Action Generation for Cyber Security Using Classical Planning , 2005, ICAPS.

[4] Christopher Krügel,et al. Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications , 2008, 2008 IEEE Symposium on Security and Privacy (sp 2008).