Ciências e Tecnologia | Capítulos/artigos em livros internacionais / Book chapters/papers in international books
URI permanente para esta coleção:
Navegar
Percorrer Ciências e Tecnologia | Capítulos/artigos em livros internacionais / Book chapters/papers in international books por Domínios Científicos e Tecnológicos (FOS) "Ciências Naturais::Ciências da Computação e da Informação"
A mostrar 1 - 2 de 2
Resultados por página
Opções de ordenação
- Cyber-vulnerabilities life cycle and risk assessmentPublication . Pestana, Pedro Duarte; Rocha, Maria Luísa; Sequeira, Fernando; Lovric, MiodragCyber-Vulnerabilities Life Cycle and Risk Assessment - Dictionary Entry
- Risk assessment of vulnerabilities exploitationPublication . Brilhante, Maria de Fátima; Pestana, Pedro Duarte; Rocha, Maria Luísa; Sequeira, Fernando; Henriques-Rodrigues, L.; Menezes, R.; Faria, S.Using the Kolmogorov–Smirnov, Cramér–von Mises and Anderson– Darling tests, and the not so commonly applied Vuong’s test, it is shown that a two components hyperlog-logistic distribution, i.e., a mixture of two geo-max-stable log-logistic distributions, provides a good fit for the time from disclosure to update of vulnerabilities sampled from the CVEdetails.com database. It is also shown that the hyperlog-logistic distribution provides a better fit than a heavy-tailed distribution of maxima, or a log-logistic distribution, or even a heavy-tailed two components hyperexponential distribution. Moreover, ways of incorporating uncertainty and of modeling vulnerabilities lifecycle into the Common Vulnerabilities Scoring System (CVSS), the most widely used score to assess severity of vulnerabilities, are discussed, in order to obtain an improved CVSS calculator and the evolution of a score over time.