Claudiu Duma scite author profile

We present a publicly available, OWL-based ontology of information security which models assets, threats, vulnerabilities, countermeasures and their relations. The ontology can be used as a general vocabulary, roadmap, and extensible dictionary of the domain of information security. With its help, users can agree on a common language and definition of terms and relationships. In addition to browsing for information, the ontology is also useful for reasoning about relationships between its entities, for example, threats and countermeasures. The ontology helps answer questions like: Which countermeasures detect or prevent the violation of integrity of data? Which assets are protected by SSH? Which countermeasures thwart buffer overflow attacks? At the moment, the ontology comprises 88 threat classes, 79 asset classes, 133 countermeasure classes and 34 relations between those classes. We provide the means for extending the ontology, and provide examples of the extendibility with the countermeasure classes ‘memory protection’ and ‘source code analysis’. This article describes the content of the ontology as well as its usages, potential for extension, technical implementation and tools for working with it.

show abstract

Dynamic Trust Metrics for Peer-to-Peer Systems

Duma

Shahmehri

Caronni

View full text Add to dashboard Cite

Privacy in the Semantic Web: What Policy Languages Have to Offer

Duma

Herzog

Shahmehri

2007

View full text Add to dashboard Cite

Modeling Software VulnerabilitiesWith Vulnerability Cause Graphs

Byers

Ardi

Shahmehri

et al. 2006

View full text Add to dashboard Cite

When vulnerabilities are discovered in software, which often happens after deployment, they must be addressed as part of ongoing software maintenance. A mature software development organization should analyze vulnerabilities in order to determine how they, and similar vulnerabilities, can be prevented in the future.In this paper we present a structured method for analyzing and documenting the causes of software vulnerabilities. Applied during software maintenance, the method generates the information needed for improving the software development process, to prevent similar vulnerabilities in future releases.Our approach is based on vulnerability cause graphs, a structured representation of causes of software vulnerabilities.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Claudiu Duma

A Trust-Aware, P2P-Based Overlay for Intrusion Detection

An Ontology of Information Security

Dynamic Trust Metrics for Peer-to-Peer Systems

Privacy in the Semantic Web: What Policy Languages Have to Offer

Modeling Software VulnerabilitiesWith Vulnerability Cause Graphs

Contact Info

Product

Resources

About