This paper reviews the major contributions in the field of Vulnerability Assessment from 1990 onwards. Even well administered networks are vulnerable to attack .Vulnerabilities are weaknesses in the requirements, design, and implementation, which attackers exploit to compromise the system. Researchers have proposed a variety of methods like graph-based algorithms to generate attack trees (or graphs), "black-box" and "whitebox" analysis, using Mobile Ambients, using Honepots, different Vulnerability tools and their Scoring System's, and so on. After surveying lot of research papers in the field, the amount of existing works for each method is identified and classified. Especially, the graph-based algorithms itself is a major area for researchers. The paper concludes with some inferences and results obtained in each method so can be used as a guideline for researchers. © 2011 Springer-Verlag.
cited By (since 1996)0; Conference of org.apache.xalan.xsltc.dom.DOMAdapter@2c0b77cb ; Conference Date: org.apache.xalan.xsltc.dom.DOMAdapter@24e5c704 Through org.apache.xalan.xsltc.dom.DOMAdapter@696cea88; Conference Code:85619
H. V. Nath, “Vulnerability assessment methods - A review”, Communications in Computer and Information Science, vol. 196 CCIS, pp. 1-10, 2011.