Vulnerability Management and Past Experience in Autonomic Networks and Services

Martín Barrère 1, * Rémi Badonnel 1 Olivier Festor 1
* Auteur correspondant
1 MADYNES - Management of dynamic networks and services
LORIA - NSS - Department of Networks, Systems and Services, Inria Nancy - Grand Est
Abstract : Vulnerability assessment activities usually analyze new security advisories over current running systems. However, a system compromised in the past by a vulnerability unknown at that moment may still constitute a potential security threat in the present. Accordingly, past unknown system exposures are required to be taken into account. We present in this paper a novel approach for increasing the overall security of computing systems by identifying past hidden vulnerable states. In that context, we propose a modeling for detecting unknown past system exposures as well as an OVAL-based distributed framework for autonomously gathering network devices information and automatically analyzing their past security exposure. We also describe an implementation prototype and evaluate its performance through an extensive set of experiments.
Type de document :
[Research Report] 2012, pp.8
Liste complète des métadonnées
Contributeur : Martín Barrère <>
Soumis le : mercredi 31 octobre 2012 - 19:07:35
Dernière modification le : mardi 5 février 2019 - 14:46:01


  • HAL Id : hal-00747660, version 1



Martín Barrère, Rémi Badonnel, Olivier Festor. Vulnerability Management and Past Experience in Autonomic Networks and Services. [Research Report] 2012, pp.8. 〈hal-00747660〉



Consultations de la notice