|
Vulnerability management is the "cyclical practice of identifying, classifying, remediating, and mitigating vulnerabilities",[1] particularly in software. Vulnerability management is integral to computer security and network security. Vulnerabilities can be discovered with a vulnerability scanner, which analyzes a computer system in search of known vulnerabilities,[2] such as open ports, insecure software configurations, and susceptibility to malware infections. Unknown vulnerabilities, such as a zero-day,[2] may be found with fuzz testing, which can identify certain kinds of vulnerabilities, such as a buffer overflow with relevant test cases. Such analysis can be facilitated by test automation. In addition, antivirus software capable of heuristic analysis may discover undocumented malware if it finds software behaving suspiciously (such as attempting to overwrite a system file). Correcting vulnerabilities may variously involve the installation of a patch, a change in network security policy, reconfiguration of software, or educating users about social engineering. See also[edit] Application security Full disclosure Long-term support IT risk Risk management References[edit] ^ Foreman, P: Vulnerability Management, page 1. Taylor & Francis
Group, 2010. ISBN 978-1-4398-0150-5
^ a b Anna-Maija Juuso and Ari Takanen Unknown Vulnerability
Management,
Codenomicon
External links[edit] "Implementing a Vulnerability Management Process". SANS Institute.
"Vulnerability Management & Prioritization". Skybox Security.
"A Vulnerability Management Primer". Brinqa.
"Total Cost of Ownership for Vulnerability Management". NopSec
blog.
Perraudeau, Eric (19 August 2009). "Q&A: Vulnerability management"
(Interview). Interview with Mirko Zorz. Retrieved 28 June 2013.
"Unknown Vulnerability Management: Webcasts".
Codenomicon
|
