Chapter 6. Knowledge of vulnerabilities as an element of cybersecurity argument

Abstract

This chapter explores vulnerability detection, which is often considered a dominant component of system assurance. The focus is on detecting off-the-shelf vulnerabilities, the corresponding information exchanges, the markets of the vulnerability knowledge, as well as the vulnerability detection ecosystem built around the NIST Security Content Automation Protocol (SCAP) standards. Vulnerability databases and ways of transforming vulnerability knowledge into machine-readable content are described. We describe the organization of two vulnerability databases and demonstrate how this knowledge can be added to the integrated system model.

Keywords

vulnerability, vulnerability ...

Get System Assurance now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

System Assurance by Nikolai Mansourov, Djenana Campara

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly