Naslov
The Evaluation of Information Security in Organizations, Using the CVSS Scoring System

Autori
Bushati, Jozef ; Kirinic, Valentina ; Barolli, Ezmolda ; Lesha, Virtyt

Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni

Izvornik
Proceedings of the IBC 2012 - 1st International Internet & Business Conference / Ivković, Miodrag ; Pejić Bach, Mirjana ; Šimićević, Vanja - Zagreb : Udruga za promicanje poslovne informatike – BIT, 2012, 31-36

Skup
The 1st International Conference on Internet & Business

Mjesto i datum
Rovinj, Hrvatska, 27.06.2012. - 28.06.2012

Vrsta sudjelovanja
Predavanje

Vrsta recenzije
Međunarodna recenzija

Ključne riječi
CVSS ; system security vulnerabilities

Sažetak
Common Vulnerability Scoring System (CVSS) is an industry standard for assessing the severity of computer system security vulnerabilities. Considering the fact that there are a lot of vulnerabilities and aspects that are included, this method attempts to represent a comprehensive summary of these vulnerabilities.Specifically, it is about three terms: Base, Temporal and Environmental. This paper includes only the first element because this one gives the assessments that are constant in the context of time and environment where the surveillance is performed. One case is considered in attempting to give the corresponding scores.Concretely, we treated a vulnerability to the Apache web-server which has to do with the way this servers treats the requests directed to. Regarding this case, we took for granted the fact that the necessary information is collected as well as the problems related to vulnerabilities to the web server are specified. The purpose is to give a methodology which summarizes these problems according CVSS system.

Izvorni jezik
Engleski

Znanstvena područja
Informacijske i komunikacijske znanosti

POVEZANOST RADA