Skip to main content
Conference Proceedings

Configuration assessment as a service

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2013) 7731 LNCS 217-226
DOI: 10.1007/978-3-642-35890-6_16
1Citations
Citations of this article
3Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Security of systems is most often compromised by misconfiguration rather than a lack of security mechanisms. As a result, configuration validation is of utmost importance within organizations. However, security policies, best-practices, and documentation of vulnerabilities are usually available in natual language and thus configuration validation is usually a manual and error-prone activity. Initiatives such as the Security Content Automation Protocol foster the automation of configuration validation and the exchange of configuration information by providing a standard language. However they only focus on single systems and are not flexible with respect to the creation of new security content. This paper proposes a tool for configuration validation as a service able to assess check and checklists defined over configurations of both generic and specific distributed systems. © 2013 Springer-Verlag.

Cite

CITATION STYLE

APA

Casalino, M. M., Plate, H., & Ponta, S. E. (2013). Configuration assessment as a service. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7731 LNCS, pp. 217–226). https://doi.org/10.1007/978-3-642-35890-6_16

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free