3 years ago

Evaluation and Selection of Software Vulnerabilities

Misbah Anjum, P. K. Kapur, Vernika Agarwal, Sunil Kumar Khatri
Information systems are an integral part of every organization's critical resource and are an important responsibility of all organizations in this digital world to defend them from attacks. Misuse of critical systems of data raises serious difficulties to organizations which involve loss of productivity, profits, company loss, credibility loss and often, legal issues. This paper develops a framework to analyze the optimal selection of vulnerabilities having maximum severity and can be resolved in minimum time. In this study, an integrated framework involving Analytical Hierarchy process (AHP) and Entropy method is used to calculate the subjective and objective weights of software vulnerabilities. Severity of vulnerabilities is then computed by taking into consideration the combined weights calculated from AHP and Entropy method. To select the most critical vulnerability, a bi-objective programming problem is used with the objective of weight maximization and time minimization. The weighted goal programming approach is used to achieve a compromise between conflicting objectives and to achieve a satisfactory solution to the bi-objective problem. The findings are tested in the Delhi-National Capital Region by a software firm.

Publisher URL: https://www.worldscientific.com/doi/abs/10.1142/S0218539320400148

DOI: 10.1142/S0218539320400148

You might also like
Discover & Discuss Important Research

Keeping up-to-date with research can feel impossible, with papers being published faster than you'll ever be able to read them. That's where Researcher comes in: we're simplifying discovery and making important discussions happen. With over 19,000 sources, including peer-reviewed journals, preprints, blogs, universities, podcasts and Live events across 10 research areas, you'll never miss what's important to you. It's like social media, but better. Oh, and we should mention - it's free.

  • Download from Google Play
  • Download from App Store
  • Download from AppInChina

Researcher displays publicly available abstracts and doesn’t host any full article content. If the content is open access, we will direct clicks from the abstracts to the publisher website and display the PDF copy on our platform. Clicks to view the full text will be directed to the publisher website, where only users with subscriptions or access through their institution are able to view the full article.