Concept

Vulnerability management

Summary

Vulnerability management is the "cyclical practice of identifying, classifying, prioritizing, remediating, and mitigating" software vulnerabilities. Vulnerability management is integral to computer security and network security, and must not be confused with vulnerability assessment. Vulnerabilities can be discovered with a vulnerability scanner, which analyzes a computer system in search of known vulnerabilities, such as open ports, insecure software configurations, and susceptibility to malware infections. They may also be identified by consulting public sources, such as NVD, vendor specific security updates or subscribing to a commercial vulnerability alerting service. Unknown vulnerabilities, such as a zero-day, may be found with fuzz testing. Fuzzy testing can identify certain kinds of vulnerabilities, such as a buffer overflow with relevant test cases. Such analysis can be facilitated by test automation. In addition, antivirus software capable of heuristic analysis may discover undocumented malware if it finds software behaving suspiciously (such as attempting to overwrite a ). Correcting vulnerabilities may variously involve the installation of a patch, a change in network security policy, reconfiguration of software, or educating users about social engineering. Project vulnerability is the project's susceptibility to being subject to negative events, the analysis of their impact, and the project's capability to cope with negative events. Based on Systems Thinking, project systemic vulnerability management takes a holistic vision, and proposes the following process:

      Project vulnerability identification.

```
      Vulnerability analysis.
```
```
      Vulnerability response planning.
```

      Vulnerability controlling – which includes implementation, monitoring, control, and lessons learned.

Coping with negative events is done, in this model, through: resistance – the static aspect, referring to the capacity to withstand instantaneous damage, and resilience – the dynamic aspect, referring to the capacity to recover in time.

Official source

https://en.wikipedia.org/wiki/Vulnerability_management

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

Vulnerability management

A review of the security vulnerabilities and countermeasures in the Internet of Things solutions: A bright future for the Blockchain

Climate risk and vulnerability assessment tool

A Deep-Learning Approach to Side-Channel Based CPU Disassembly at Design Time

A review of the security vulnerabilities and countermeasures in the Internet of Things solutions: A bright future for the Blockchain

Climate risk and vulnerability assessment tool

A Deep-Learning Approach to Side-Channel Based CPU Disassembly at Design Time