QSec: Supporting Security Decisions on an IT Infrastructure [chapter]

Fabrizio Baiardi, Federico Tonelli, Fabio Corò, Luca Guidi
2013 Lecture Notes in Computer Science  
A global vulnerability of an IT infrastructure is a set of vulnerabilities in its nodes that enables a sequence of attacks where an agent acquires the privileges that each attack requires as a result of the previous attacks in the sequence. This paper presents QSec, a tool to support decision on the infrastructure security that queries a database with information on global vulnerabilities and the corresponding attack sequences. QSec can return information on, among others, global
more » ... , the corresponding attack sequences and the infrastructure nodes that are the target of a sequence. This information is fundamental to evaluate in more details the security of the infrastructure and to support decisions on vulnerabilities to be removed.
doi:10.1007/978-3-319-03964-0_10 fatcat:3p4vhowebfa7nkt3uacfkevw74