QSec: Supporting Security Decisions on an IT Infrastructure

@inproceedings{Baiardi2013QSecSS,
  title={QSec: Supporting Security Decisions on an IT Infrastructure},
  author={Fabrizio Baiardi and Federico Tonelli and Fabio Cor{\`o} and Luca Guidi},
  booktitle={CRITIS},
  year={2013}
}
A global vulnerability of an IT infrastructure is a set of vulnerabilities in its nodes that enables a sequence of attacks where an agent acquires the privileges that each attack requires as a result of the previous attacks in the sequence. This paper presents QSec, a tool to support decision on the infrastructure security that queries a database with information on global vulnerabilities and the corresponding attack sequences. QSec can return information on, among others, global… CONTINUE READING

From This Paper

Figures, tables, and topics from this paper.

Citations

Publications citing this paper.
Showing 1-10 of 10 extracted citations

References

Publications referenced by this paper.
Showing 1-10 of 16 references

a dictionary of publicly known information security vulnerabilities and exposures

  • MITRE. Cve
  • Technical report, MITRE,
  • 1999
Highly Influential
7 Excerpts

Ritchey . A host - based approach to network attack chaining analysis

  • W Ronald
  • First International Workshop on Emerging…
  • 2005

Similar Papers

Loading similar papers…