웹 애플리케이션 취약성 수치화 프레임워크 연구 동향
|
|
Cho, Sung-Young
(KAIST 정보보호대학원)
Jeon, Sang-Hun (KAIST 사이버보안 연구센터) Lim, Chae-Ho (KAIST 사이버보안 연구센터, 정보보호대학원) Kim, Se-Hun (KAIST 산업 및 시스템 공학과, 정보보호대학원) |
| 1 | The OWASP Foundation, "OWASP Top 10 - 2010, The ten most critical web application security risks", July 2010, https://www.owasp.org/index.php/Top 10. |
| 2 | Microsoft Corporation, Microsoft Security Response Center Security Bulletin Severity Rating System, Nov. 2002, http://technet.microsoft.com/en-us/security/bulletin/rating. |
| 3 | Peter Mell, Karen Scarfone, Sasah Romanosky, "CVSS - A Complete Guide to the Common Vulnerability Scoring System Version 2.0", June 2007. http://www.first.org/cvss. |
| 4 | Peter Mell, Karen Scarfone, Sasah Romanosky, "Common Vulnerability Scoring System", IEEE Security and Privacy, no. 6, vol. 4, pp. 85-59, 2006. |
| 5 | Bob MArtin, Steve Christey, "Common Weakness Scoring System(CWSS)," June 2011, The MITRE Corporation, http://cwe.mitre.org/cwss. |
| 6 | Bob Martin, Mason Brown, Alan Paller, Dennis Kirby, Steve Christey, "2011 CWE/SANS Top 25 Most Dangerous Software Errors", Sep. 2011, The MITRE Corporation, http://cwe.mitre.org/top25. |
 |
Korea Institute of Science and Technology Information
Gwahangno, Yuseong-gu, Daejeon, 305-806, Korea TEL : +82-42-869-1752
Copyright (c) 2009 KISTI. All Rights Reserved. For more information mail to
webmaster
