Abstract

One of the problems facing penetration testers is that a test can generate vast quantities of information that need to be stored, analysed and cross-referenced for later use. Consequently, this paper will present an architecture based on the encoding of information within an XML document. We will also demonstrate how, through application of the architecture, large quantities of security-related information can be captured within a single database schema. This database can then be used to ensure that systems are conforming to an organisation's network security policy.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
An XML‐based architecture for data integration in vulnerability assessments
Andrew Blyth ... Paula Thomas
Information Management & Computer Security | VOL. 13
Andrew Blyth, et. al.Andrew Blyth ... Paula Thomas
01 Sep 2005
Towards Improved Network Security Requirements and Policy: Domain-Specific Completeness Analysis via Topic Modeling
Jane Huffman Hayes ... Emily Essex
-
Jane Huffman Hayes, et. al.Jane Huffman Hayes ... Emily Essex
01 Sep 2020
Distributed Security Policy Analysis
-
01 Jan 2015
Chapter 3 - Creating and Defining a Network Security Policy
Joe Levy ... Hung Ha
SonicWALL Secure Wireless Networks Integrated Solutions Guide | VOL. -
Joe Levy, et. al.Joe Levy ... Hung Ha
01 Jan 2007
View more papers

More From: Information Security Technical Report

Paper Title
Journal
Date
Author
ARES 2012 special issue
-
Information Security Technical Report | VOL. 17
--
01 May 2013
Toward web-based information security knowledge sharing
Daniel Feledi ... Lukas Lechner
Information Security Technical Report | VOL. 17
Daniel Feledi, et. al.Daniel Feledi ... Lukas Lechner
01 May 2013
Bridging the gap between role mining and role engineering via migration guides
Anne Baumgrass ... Mark Strembeck
Information Security Technical Report | VOL. 17
Anne Baumgrass, et. al.Anne Baumgrass ... Mark Strembeck
21 Apr 2013
Analyses of two end-user software vulnerability exposure metrics (extended version)
Jason L Wright ... Lawrence Wellman
Information Security Technical Report | VOL. 17
Jason L Wright, et. al.Jason L Wright ... Lawrence Wellman
17 Apr 2013
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.