2022
DOI: 10.3390/electronics11213580
|View full text |Cite
|
Sign up to set email alerts
|

Automated Context-Aware Vulnerability Risk Management for Patch Prioritization

Abstract: The information-security landscape continuously evolves by discovering new vulnerabilities daily and sophisticated exploit tools. Vulnerability risk management (VRM) is the most crucial cyber defense to eliminate attack surfaces in IT environments. VRM is a cyclical practice of identifying, classifying, evaluating, and remediating vulnerabilities. The evaluation stage of VRM is neither automated nor cost-effective, as it demands great manual administrative efforts to prioritize the patch. Therefore, there is a… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
5
0

Year Published

2023
2023
2024
2024

Publication Types

Select...
1
1

Relationship

1
1

Authors

Journals

citations
Cited by 2 publications
(5 citation statements)
references
References 24 publications
0
5
0
Order By: Relevance
“…• Case 1: PM based on the patch prioritization list in our previous work [5], where the PS determines the patch order. In this case, there is no automated review of the patch prioritization.…”
Section: Methodsmentioning
confidence: 99%
See 4 more Smart Citations
“…• Case 1: PM based on the patch prioritization list in our previous work [5], where the PS determines the patch order. In this case, there is no automated review of the patch prioritization.…”
Section: Methodsmentioning
confidence: 99%
“…In our previous work [5], we designed and implemented phase 2 of ACVRM, patch prioritization without a feedback loop from the patch verification task in phase 3. Moreover, the review prioritization block (cf.…”
Section: Contributionmentioning
confidence: 99%
See 3 more Smart Citations