1. You are Here:

Full metadata record
DC FieldValueLanguage
dc.contributor.authorTung, Yuan-Hsinen_US
dc.contributor.authorTseng, Shian-Shyongen_US
dc.contributor.authorShih, Jen-Fengen_US
dc.contributor.authorShan, Hwai-Lingen_US
dc.date.accessioned2017-04-21T06:48:45Z-
dc.date.available2017-04-21T06:48:45Z-
dc.date.issued2013en_US
dc.identifier.urihttp://hdl.handle.net/11536/134732-
dc.description.abstractWeb applications are exposed to various threats and attacks, and therefore numerous tools are developed for detecting web application vulnerabilities. Many studies have focused on evaluating vulnerability scanners. An efficient evaluation approach for detection tools is essential and can be extremely helpful to the users. In this paper, we propose a cost-effective approach to evaluating vulnerability scanners by considering redundant vulnerability alert problem. We define the redundant alert problem in scanner evaluation with our motivational example and propose the advanced confusion matrix by extending two defined attributes, true duplication (TD) and false duplication (FD). Then we apply our proposed cost-effective evaluation approach and build up the web Vulnerability Scanner Testbed.en_US
dc.language.isoen_USen_US
dc.subjectweb vulnerabilityen_US
dc.subjectsecurityen_US
dc.subjectvulnerability detectionen_US
dc.subjectcost-effective evaluationen_US
dc.subjectadvanced confusion matrixen_US
dc.titleA Cost-effective Approach to evaluating Security Vulnerability Scanneren_US
dc.typeProceedings Paperen_US
dc.identifier.journal2013 15TH ASIA-PACIFIC NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM (APNOMS)en_US
dc.contributor.department資訊工程學系zh_TW
dc.contributor.departmentDepartment of Computer Scienceen_US
dc.identifier.wosnumberWOS:000333754700029en_US
dc.citation.woscount0en_US
Appears in Collections:Conferences Paper


Related Contents
Loading...