Handling and reporting security advisories: A scorecard approach

被引:4
|
作者
Lekkas, D [1 ]
Spinellis, D
机构
[1] Univ Aegean, Dept Prod & Syst Design Engn, Mitilini, Greece
[2] Athens Univ Econ & Business, Dept Management Sci & Technol, Athens, Greece
关键词
D O I
10.1109/MSP.2005.98
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
A scorecard approach that provides a practical guide to publish, read, evaluate, and handle security advisories is presented. A vulnarability scorecard provides perspective guidelines based on goal-question-metric approach to users and help them to assess the impact of vulnerability disclosures. It is designed to let users record useful information and help security response centres to publish advisories. The scorecard provides a practical solution to the problem of defining a series of metrics, and help an interested party to determine the risks being faced by a specific system in evaluating the scorecard for a given security advisories.
引用
收藏
页码:32 / 41
页数:10
相关论文
共 50 条
  • [21] Identifying gaps in COVID-19 health equity data reporting in Canada using a scorecard approach
    Alexandra Blair
    Kahiye Warsame
    Harsh Naik
    Walter Byrne
    Abtin Parnia
    Arjumand Siddiqi
    Canadian Journal of Public Health, 2021, 112 : 352 - 362
  • [22] Identifying gaps in COVID-19 health equity data reporting in Canada using a scorecard approach
    Blair, Alexandra
    Warsame, Kahiye
    Naik, Harsh
    Byrne, Walter
    Parnia, Abtin
    Siddiqi, Arjumand
    CANADIAN JOURNAL OF PUBLIC HEALTH-REVUE CANADIENNE DE SANTE PUBLIQUE, 2021, 112 (03): : 352 - 362
  • [23] HOW APPROPRIATE IS THE BALANCED SCORECARD AS AN INTERNAL REPORTING FRAMEWORK?
    Mountcastle, Paul
    Yahanpath, Noel
    ASIA-PACIFIC MANAGEMENT ACCOUNTING JOURNAL, 2015, 10 (02): : 1 - 20
  • [24] A NEW APPROACH FOR THE ESTABLISHMENT OF FISH CONSUMPTION ADVISORIES
    CLARK, JM
    FINK, L
    DEVAULT, D
    JOURNAL OF GREAT LAKES RESEARCH, 1987, 13 (03) : 367 - 374
  • [25] Balanced Scorecard Implementation of Security Strategies: A Framework for IT Security Performance Management
    Herath, Tejaswini
    Herath, Hemantha
    Bremser, Wayne G.
    INFORMATION SYSTEMS MANAGEMENT, 2010, 27 (01) : 72 - 81
  • [26] DATA HANDLING AND REPORTING - REPLY
    FORRESTER, RL
    COLLINGE, W
    HASHIMOTO, P
    WORRALL, J
    CLINICAL CHEMISTRY, 1976, 22 (06) : 938 - 939
  • [27] Robust password security: a genetic programming approach with imbalanced dataset handling
    Andelic, Nikola
    Segota, Sandi Baressi
    Car, Zlatan
    INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2024, 23 (03) : 1761 - 1786
  • [28] BRITISH AND FRENCH VIEWS ON SECURITY OF SUPPLY - FAULT REPORTING IS BEST APPROACH
    DIXON, GFL
    ELECTRICAL REVIEW, 1971, 189 (21): : 735 - &
  • [29] Measuring the integrated reporting quality in Europe: balanced scorecard perspectives
    Nada, Omar Hassan Ali
    Gyori, Zsuzsanna
    JOURNAL OF FINANCIAL REPORTING AND ACCOUNTING, 2023,
  • [30] ASEAN Corporate Governance Scorecard: Sustainability Reporting and Firm Value
    Husnaini, Wahidatul
    Basuki, Basuki
    JOURNAL OF ASIAN FINANCE ECONOMICS AND BUSINESS, 2020, 7 (11): : 315 - 326