All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

Graph-Based CPE Matching for Identification of Vulnerable Asset Configurations

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14610%2F21%3A00120057" target="_blank" >RIV/00216224:14610/21:00120057 - isvavai.cz</a>

  • Result on the web

  • DOI - Digital Object Identifier

Alternative languages

  • Result language

    angličtina

  • Original language name

    Graph-Based CPE Matching for Identification of Vulnerable Asset Configurations

  • Original language description

    In this manuscript, we propose a graph-based approach for identification of vulnerable asset configurations via Common Platform Enumeration matching. The approach consists of a graph model and insertion procedure that is able to represent and store information about CVE vulnerabilities and different configurations of CPE-classified asset components. These building blocks are accompanied with a search query in Gremlin graph traversal language that is able to find all vulnerable pairs of CVEs and asset configurations in a single traversal, as opposed to a conventional brute-force approach.

  • Czech name

  • Czech description

Classification

  • Type

    D - Article in proceedings

  • CEP classification

  • OECD FORD branch

    10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Result continuities

  • Project

    <a href="/en/project/VI20202022164" target="_blank" >VI20202022164: Advanced security orchestration and intelligent threat management</a><br>

  • Continuities

    P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Others

  • Publication year

    2021

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Article name in the collection

    2021 IFIP/IEEE International Symposium on Integrated Network Management (IM 2021)

  • ISBN

    9783903176324

  • ISSN

  • e-ISSN

  • Number of pages

    6

  • Pages from-to

    986-991

  • Publisher name

    IEEE

  • Place of publication

    Washington DC, USA

  • Event location

    Bordeaux, France

  • Event date

    Jan 1, 2021

  • Type of event by nationality

    WRD - Celosvětová akce

  • UT code for WoS article

    000696801700149

Similar results(10)

Mission-centric Decision Support in Cybersecurity via Bayesian Privilege Attack GraphCoinWatch: A Clone-Based Approach for Detecting Vulnerabilities in CryptocurrenciesHandicap