Skip to main content
Springer Nature Link
Log in

Assessment of Windows System Security Using Vulnerability Relationship Graph

  • Conference paper
Computational Intelligence and Security (CIS 2005)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 3802))

Included in the following conference series:

Abstract

To evaluate the security situation of Windows systems for different users on different security attributes, this paper proposes a quantitative assessment method based on vulnerability relationship graph (VRG) and an index-based assessment policy. Through introducing the correlative influences of vulnerabilities, VRG can be used to scientifically detect high risk vulnerabilities which can evoke multistage attacks although their threats on surface are very little. Analysis of 1085 vulnerabilities indicates that for trusted remote visitors, the security of Windows systems is lower while for distrusted remote visitors, they are relatively secure. But there is no obvious difference of the security risk on confidentiality, authenticity and availability of Windows systems. In several known versions, the security of Windows NT is almost lowest.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Michener, J.: System Insecurity in the Internet Age. IEEE Software 16(4), 62–69 (1999)

    Article  Google Scholar 

  2. Jiwnani, K., Zelkowitz, M.: Maintaining Software with A Security Perspective. In: ICSM 2002, Montréal, pp. 194–203 (2002)

    Google Scholar 

  3. Hedbom, H., Lindskog, S., Axelsson, S., Jonsson, E.: A Comparison of the Security of Windows NT and UNIX. In: Third Nordic Workshop on Secure IT Systems (November 1998)

    Google Scholar 

  4. Wang, L.D.: Quantitative Security Risk Assessment Method for Computer System and Network (In Chinese). Ph.D. Thesis, Harbin Institute of Technology (2002)

    Google Scholar 

  5. Zhang, Y.Z., Yun, X.C.: A New Vulnerability Taxonomy Based on Privilege Escalation. In: Proceedings of the 6th ICEIS, vol. 3, pp. 596–600 (2004)

    Google Scholar 

  6. Fang, B.X.: Network and Information Security, and Its Novel Technology (2001), http://pact518.hit.edu.cn/view/view/frame.htm

  7. Schneier, B.: Attack Trees. Dr. Dobb’s Journal 24(12), 21–29 (1999)

    Google Scholar 

  8. Zhang, Y.Z., Yun, X.C., Fang, B.X.(eds.): A Mining Method for Computer Vulnerability Correlation. Int. J. Innovative Computing, Information and Control. 1(1), 43–51 (2005)

    Google Scholar 

  9. SecurityFocus: Bugtraq (2005), http://www.securityfocus.com/bid/

Download references

Author information

Authors and Affiliations

  1. Research Center of Computer Network and Information Security Technology, Harbin Institute of Technology, Harbin, 150001, Heilongjiang, China

    Yongzheng Zhang, Binxing Fang, Yue Chi & Xiaochun Yun

Authors
  1. Yongzheng Zhang
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Binxing Fang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yue Chi
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Xiaochun Yun
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Microelectronic Instiute, Xidian University, 710071, Xi’an, China

    Yue Hao

  2. Department of Computer Science, Hong Kong Baptist University, Kowloon Tong, Hong Kong

    Jiming Liu

  3. School of Computer Science and Technology, Xidian University, Xi’an, China

    Yu-Ping Wang

  4. Department of Computer Science, Hong Kong Baptist University, Hong Kong,  

    Yiu-ming Cheung

  5. School of Electrical and Electronic Engineering, University of Manchester, UK

    Hujun Yin

  6. Life Science Research Center, School of Electronic Engineering, Xidian University, 710071, Xi’an, Shaanxi, China

    Licheng Jiao

  7. Key Laboratory of Computer Networks and Information Security(Ministry of Education), Xidian University, 710071, Xi’an, China

    Jianfeng Ma

  8. National Laboratory of Antennas and Microwave Technology, Xidian University, 710071, Xi’an, Shanxi, P.R. China

    Yong-Chang Jiao

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Zhang, Y., Fang, B., Chi, Y., Yun, X. (2005). Assessment of Windows System Security Using Vulnerability Relationship Graph. In: Hao, Y., et al. Computational Intelligence and Security. CIS 2005. Lecture Notes in Computer Science(), vol 3802. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11596981_60

Download citation

  • DOI: https://doi.org/10.1007/11596981_60

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-30819-5

  • Online ISBN: 978-3-540-31598-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation