Vulnerability Assessment Using a Fuzzy Logic Based Method

Abstract

This thesis demonstrates the feasibility of using qualitative analysis methods to evaluate computer security vulnerabilities. Although many risk analysis systems exist, few provide for the adequate analysis of identified vulnerabilities. While the main focus of this thesis is to evaluate computer security vulnerabilities, the methods involved have application in other areas requiring evaluation using qualitative methods. It is proposed, and demonstrated by this thesis, that the use of qualitative analysis using linguistic variables to describe the impact of computer security vulnerabilities is not only feasible, but intrinsically easier to understand and use than quantitative methods.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 01, 1993
Accession Number
ADA274075

Entities

People

  • Richard W. Fleming

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Air Force
  • Artificial Intelligence
  • Computational Science
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Cybersecurity
  • Fuzzy Logic
  • Fuzzy Sets
  • Lisp Programming Language
  • Operating Systems
  • Risk
  • Risk Analysis
  • Set Theory
  • Statistical Analysis
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Computational Modeling and Simulation

Technology Areas

  • Cyber