EN
Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services
Abstract
Nowadays, the increasing number of devices and services that require a direct Internet access, creates new security challenges. These challenges need to meet user feature-based requirements with the companies' restrictive security policies. Therefore, security administrators need to adopt novel tools in order to quickly and non-intrusively verify the degree of exposure of Internet-facing services. In this respect, we find tools such as Shodan and ZMap which enable scanning of services at an Internet-scale. This paper presents a methodology that expands the feature delivered by such tools with automated vulnerability assessment capabilities. The proposed methodology builds on the results returned by Shodan, which are analyzed in order to automatically identify known vulnerabilities from National Vulnerability Database. Experiments conducted on five university-type institutions revealed the effectiveness of the proposed approach and the high degree of service exposure which may require immediate, yet simple service sanitizing security measures.
Keywords
Details
Primary Language
English
Subjects
-
Journal Section
-
Publication Date
September 29, 2015
Submission Date
January 30, 2016
Acceptance Date
-
Published in Issue
Year 2015 Volume: 4 Number: 3
APA
Genge, B., Haller, P., & Enachescu, C. (2015). Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services. International Journal of Information Security Science, 4(3), 81-91. https://izlik.org/JA27KW76EF
AMA
1.Genge B, Haller P, Enachescu C. Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services. IJISS. 2015;4(3):81-91. https://izlik.org/JA27KW76EF
Chicago
Genge, Bela, Piroska Haller, and Calin Enachescu. 2015. “Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services”. International Journal of Information Security Science 4 (3): 81-91. https://izlik.org/JA27KW76EF.
EndNote
Genge B, Haller P, Enachescu C (September 1, 2015) Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services. International Journal of Information Security Science 4 3 81–91.
IEEE
[1]B. Genge, P. Haller, and C. Enachescu, “Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services”, IJISS, vol. 4, no. 3, pp. 81–91, Sept. 2015, [Online]. Available: https://izlik.org/JA27KW76EF
ISNAD
Genge, Bela - Haller, Piroska - Enachescu, Calin. “Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services”. International Journal of Information Security Science 4/3 (September 1, 2015): 81-91. https://izlik.org/JA27KW76EF.
JAMA
1.Genge B, Haller P, Enachescu C. Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services. IJISS. 2015;4:81–91.
MLA
Genge, Bela, et al. “Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services”. International Journal of Information Security Science, vol. 4, no. 3, Sept. 2015, pp. 81-91, https://izlik.org/JA27KW76EF.
Vancouver
1.Bela Genge, Piroska Haller, Calin Enachescu. Beyond Internet Scanning: Non-Intrusive Vulnerability Assessment of Internet-Facing Services. IJISS [Internet]. 2015 Sep. 1;4(3):81-9. Available from: https://izlik.org/JA27KW76EF