A Proposed Visualization for Vulnerability Scan Data

Authors: 

Stacey Watson and Heather Richter Lipford, University of North Carolina at Charlotte

Abstract: 

System administrators make security decisions based on data provided by a variety of tools. Yet too often these tools do not structure the presentation of that data to support the communication and decision making needs of a variety of stakeholders within an organization. For example, consider the task of fixing system vulnerabilities based on network scans. Network vulnerability tools produce an overwhelming amount of raw data that is difficult to prioritize. The most critical vulnerabilities in the most sensitive systems must be addressed quickly, before attackers discover and exploit them. Additionally, non-security domain experts are often called upon to perform remediation and/or to make critical security decisions. As such, it is imperative that the security state of the network be communicated in such a way as to support these efforts. Unfortunately, current security tools that provide visualizations are complex and fail to provide actionable data. In this paper, we propose a new way to visualize vulnerability scan data by network zone using free and open-source tools to demonstrate how visualizations can be created to support decision making.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@inproceedings {205825,
title = {A Proposed Visualization for Vulnerability Scan Data},
booktitle = {Thirteenth Symposium on Usable Privacy and Security ({SOUPS} 2017)},
year = {2017},
address = {Santa Clara, CA},
url = {https://www.usenix.org/conference/soups2017/workshop-program/wsiw2017/watson},
publisher = {{USENIX} Association},
month = jul,
}