| Title |
Automated conversion of CVE records into an expert system, dedicated to information security risk analysis, knowledge-base rules |
| Authors |
Benetis, Dovydas ; Vitkus, Donatas ; Janulevičius, Justinas ; Čenys, Antanas ; Goranin, Nikolaj |
| DOI |
10.3390/electronics13132642 |
| Full Text |
|
| Is Part of |
Electronics: Special Issue: New Challenges in Information Security and Privacy and Cyber Resilience.. Basel : MDPI. 2024, vol. 13, iss. 13, art. no. 2642, p. 1-14.. ISSN 2079-9292 |
| Keywords [eng] |
information security ; risk analysis ; expert systems ; knowledge base ; automation ; CVE data |
| Abstract [eng] |
Expert systems (ESs) can be seen as a perspective method for risk analysis process automation, especially in the case of small- and medium-sized enterprises that lack internal security resources. Expert system practical applicability is limited by the fact that the creation of an expert system knowledge base requires a lot of manual work. External knowledge sources, such as attack trees, web pages, and ontologies, are already proven to be valuable sources for the automated creation of knowledge base rules, thus leading to more effective creation of specialized expert systems. This research proposes a new method of automated conversion of CVE data from the National Vulnerability Database (version CVSS 2) into the knowledge base of an expert system and flags CVE records that have higher risk due to already existing exploit tools. This manuscript also contains a description of the method for implementing software and a practical evaluation of conversion results. The uniqueness of the proposed method is incorporation of the records included in the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities Catalog. |
| Published |
Basel : MDPI |
| Type |
Journal article |
| Language |
English |
| Publication date |
2024 |
| CC license |
|
