Abstract

PurposeThe purpose of this paper is to evaluate if automated vulnerability scanning accurately identifies vulnerabilities in computer networks and if this accuracy is contingent on the platforms used.Design/methodology/approachBoth qualitative comparisons of functionality and quantitative comparisons of false positives and false negatives are made for seven different scanners. The quantitative assessment includes data from both authenticated and unauthenticated scans. Experiments were conducted on a computer network of 28 hosts with various operating systems, services and vulnerabilities. This network was set up by a team of security researchers and professionals.FindingsThe data collected in this study show that authenticated vulnerability scanning is usable. However, automated scanning is not able to accurately identify all vulnerabilities present in computer networks. Also, scans of hosts running Windows are more accurate than scans of hosts running Linux.Research limitations/implicationsThis paper focuses on the direct output of automated scans with respect to the vulnerabilities they identify. Areas such as how to interpret the results assessed by each scanner (e.g. regarding remediation guidelines) or aggregating information about individual vulnerabilities into risk measures are out of scope.Practical implicationsThis paper describes how well automated vulnerability scanners perform when it comes to identifying security issues in a network. The findings suggest that a vulnerability scanner is a useable tool to have in your security toolbox given that user credentials are available for the hosts in your network. Manual effort is however needed to complement automated scanning in order to get satisfactory accuracy regarding network security problems.Originality/valuePrevious studies have focused on the qualitative aspects on vulnerability assessment. This study presents a quantitative evaluation of seven of the most popular vulnerability scanners available on the market.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Novel security metrics for ranking vulnerabilities in computer networks
Mahsa Keramati ... Marjan Keramati
-
Mahsa Keramati, et. al.Mahsa Keramati ... Marjan Keramati
01 Sep 2014
Security Measures in a Secure Computer Communications Architecture
Louis Bottino
-
Louis BottinoLouis Bottino
01 Oct 2006
University Computer Network Vulnerability Management using Nmap and Nexpose
-
International Journal of Advanced Trends in Computer Science and Engineering | VOL. 10
--
07 Dec 2021
Vulnerabilities of Windows systems through Wi-Fi infrastructure
Cristian Capotă ... Ionuț Țene
-
Cristian Capotă, et. al.Cristian Capotă ... Ionuț Țene
02 Mar 2023
View more papers

More From: Information Management & Computer Security

Paper Title
Journal
Date
Author
Repairing trust in an e-commerce and security context: an agent-based modeling approach
Derek L Nazareth ... Jae Choi
Information Management & Computer Security | VOL. 22
Derek L Nazareth, et. al.Derek L Nazareth ... Jae Choi
10 Nov 2014
Current challenges in information security risk management
Stefan Fenz ... Fabian Pechstein
Information Management & Computer Security | VOL. 22
Stefan Fenz, et. al.Stefan Fenz ... Fabian Pechstein
10 Nov 2014
Security culture and the employment relationship as drivers of employees’ security compliance
John D'Arcy ... Gwen Greene
Information Management & Computer Security | VOL. 22
John D'Arcy, et. al.John D'Arcy ... Gwen Greene
10 Nov 2014
Using response action with intelligent intrusion detection and prevention system against web application malware
Ansam Khraisat ... Ammar Alazab
Information Management & Computer Security | VOL. 22
Ansam Khraisat, et. al.Ansam Khraisat ... Ammar Alazab
10 Nov 2014
View more papers