Full text
| |
| Author(s): |
Antonio José dos Santos Brandão
Total Authors: 1
|
| Document type: | Master's Dissertation |
| Press: | São Carlos. |
| Institution: | Universidade de São Paulo (USP). Instituto de Ciências Matemáticas e de Computação (ICMC/SB) |
| Defense date: | 2004-05-05 |
| Examining board members: |
Edson dos Santos Moreira;
João do Espírito Santo Batista Neto;
Clovis Torres Fernandes
|
| Advisor: | Edson dos Santos Moreira |
| Abstract | |
Computational systems have become complex therefore usually the use of diverse tools is necessary to ease the task of intruders\' detection and security maintenance. The most tools are based in messages generation, called alerts, that inform administrators about occurred events. Currendy, that\'s no classification that permit the correlation of alerts generated from different applications, fact that modvated this work, that aims to study and to consider the use of ontology to classify computer vulnerabilities. The modeling of an ontology of vulnerabilities was done, with the specificadon of its classes, properties and relationships. The ontology was implemented using the OWL language and the database from CVE (Common Vulnerabilities and Exposures) project was used as source of information on vulnerabilities. Vulnerabilities have been classified in the ontology and some tests had been done using the RDQL language to ensure the viability to extract information from the ontology. (AU) | |