UGC Approved Journal no 63975(19)

ISSN: 2349-5162 | ESTD Year : 2014
Call for Paper
Volume 11 | Issue 5 | May 2024

JETIREXPLORE- Search Thousands of research papers

WhatsApp Contact
Click Here

Published in:

Volume 6 Issue 6
June-2019
eISSN: 2349-5162

UGC and ISSN approved 7.95 impact factor UGC Approved Journal no 63975

7.95 impact factor calculated by Google scholar

Unique Identifier

Published Paper ID:
JETIR1908190


Registration ID:
225186

Page Number

254-261

Share This Article


Jetir RMS

Title

AUTOMATION FRAMEWORK FOR SOFTWARE VULNERABILITY EXPLOITABILITY ASSESSMENT

Authors

Abstract

Software has become an integral part of every industry and organization. Due to improvement in technology and lack of expertise in coding techniques, software vulnerabilities are increasing day-by-day in the software development sector. The time gap between the identification of the vulnerabilities and their automated exploit attack is decreasing. This gives rise to the need for detection and prevention of security risks and devel- opment of secure software. Earlier the security risk is identified and corrected the better it is. Developers needs a framework which can report the security flaws in their system and reduce the chances of exploitation of these flaws by some malicious user. Common Vector Scoring System (CVSS) is a De facto metrics system used to assess the exploitability of vulnerabilities. CVSS exploitability measures use subjective values based on the views of experts. It considers mainly two factors, Access Vector(AV) and Authentication (AU). CVSS does not specify on what basis the third-factor Access Complexity (AC) is measured, whether or not it considers software properties. Our objective is to come up with a framework that automates the process of identifying vulnerabilities using software structural properties. These properties could be attack entry points, vulnerability locations, presence of dangerous system calls, and reachability analysis. This framework has been tested on two open source softwares - Apache HTTP server and Mozilla Firefox.

Key Words

Structural Severity, Vulnerabilities, Reachability, Entry points

Cite This Article

"AUTOMATION FRAMEWORK FOR SOFTWARE VULNERABILITY EXPLOITABILITY ASSESSMENT", International Journal of Emerging Technologies and Innovative Research (www.jetir.org), ISSN:2349-5162, Vol.6, Issue 6, page no.254-261, June 2019, Available :http://www.jetir.org/papers/JETIR1908190.pdf

ISSN


2349-5162 | Impact Factor 7.95 Calculate by Google Scholar

An International Scholarly Open Access Journal, Peer-Reviewed, Refereed Journal Impact Factor 7.95 Calculate by Google Scholar and Semantic Scholar | AI-Powered Research Tool, Multidisciplinary, Monthly, Multilanguage Journal Indexing in All Major Database & Metadata, Citation Generator

Cite This Article

"AUTOMATION FRAMEWORK FOR SOFTWARE VULNERABILITY EXPLOITABILITY ASSESSMENT", International Journal of Emerging Technologies and Innovative Research (www.jetir.org | UGC and issn Approved), ISSN:2349-5162, Vol.6, Issue 6, page no. pp254-261, June 2019, Available at : http://www.jetir.org/papers/JETIR1908190.pdf

Publication Details

Published Paper ID: JETIR1908190
Registration ID: 225186
Published In: Volume 6 | Issue 6 | Year June-2019
DOI (Digital Object Identifier):
Page No: 254-261
Country: Chennai, Tamil Nadu, India .
Area: Engineering
ISSN Number: 2349-5162
Publisher: IJ Publication
Published Paper URL :: https://www.jetir.org/view?paper=JETIR1908190
Published Paper PDF: https://www.jetir.org/papers/JETIR1908190

Preview This Article


Downlaod

Click here for Article Preview

Download PDF

Downloads

0002827

Print This Page

Current Call For Paper

Volume 11 | Issue 5
May 2024

Call for Paper
Cilck Here For More Info

Jetir RMS