Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment

Ilias Chalvatzis; Dimitrios A. Karras; Rallis Papademetriou

doi:10.1109/ICAICA.2019.8873438

Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment

Ilias Chalvatzis, Dimitrios A. Karras, Rallis Papademetriou

School of Energy & Electronic Engineering

Sterea Hellas Institute of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

912 Downloads (Pure)

Abstract

Risk Assessment has been identified as a critical issue in computer infrastructures, especially in medium to large scale organizations and enterprises. The goal of this research report is to provide a virtual machine based framework for testing the performance of vulnerability scanners applied to such enterprises, focused to small and medium size ones. Moreover, the purpose of this paper is to compare three of the most wellknown free vulnerability scanning solutions (Nessus, OpenVAS, Nmap Scripting Engine) in regards to how they can be used to automate the process of Risk Assessment in an organization, based on the herein presented experimental evaluation framework involving virtual machine testing.

Original language	English
Title of host publication	Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA)
Place of Publication	USA
Publisher	Institute of Electrical and Electronics Engineers Inc.
Number of pages	7
Volume	1
ISBN (Electronic)	978-1-7281-1223-7, 978-1-7281-1222-0
ISBN (Print)	978-1-7281-1224-4
DOIs	https://doi.org/10.1109/ICAICA.2019.8873438
Publication status	Published - 17 Oct 2019
Event	2019 IEEE International Conference on Artificial Intelligence and Computer Applications - Dalian, China Duration: 29 Mar 2019 → 31 Mar 2019

Conference

Conference	2019 IEEE International Conference on Artificial Intelligence and Computer Applications
Abbreviated title	ICAICA 2019
Country/Territory	China
City	Dalian
Period	29/03/19 → 31/03/19

Keywords

Vulnerability Scanning
Risk Assessment
Nessus
OpenVAS
Nmap Scripting Engine

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1109/ICAICA.2019.8873438

Evaluation of security vulnerability scanners
© © 2019 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Accepted author manuscript (Post-print), 339 KB

Cite this

Chalvatzis, I., Karras, D. A., & Papademetriou, R. (2019). Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment. In Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA) (Vol. 1). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICAICA.2019.8873438

Chalvatzis, Ilias ; Karras, Dimitrios A. ; Papademetriou, Rallis. / Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment. Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA). Vol. 1 USA : Institute of Electrical and Electronics Engineers Inc., 2019.

@inproceedings{4b4bd6802f63435fa5037168bc5c2be1,

title = "Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment",

abstract = "Risk Assessment has been identified as a critical issue in computer infrastructures, especially in medium to large scale organizations and enterprises. The goal of this research report is to provide a virtual machine based framework for testing the performance of vulnerability scanners applied to such enterprises, focused to small and medium size ones. Moreover, the purpose of this paper is to compare three of the most wellknown free vulnerability scanning solutions (Nessus, OpenVAS, Nmap Scripting Engine) in regards to how they can be used to automate the process of Risk Assessment in an organization, based on the herein presented experimental evaluation framework involving virtual machine testing.",

keywords = "Vulnerability Scanning, Risk Assessment, Nessus, OpenVAS, Nmap Scripting Engine",

author = "Ilias Chalvatzis and Karras, {Dimitrios A.} and Rallis Papademetriou",

year = "2019",

month = oct,

day = "17",

doi = "10.1109/ICAICA.2019.8873438",

language = "English",

isbn = "978-1-7281-1224-4",

volume = "1",

booktitle = "Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA)",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

note = "2019 IEEE International Conference on Artificial Intelligence and Computer Applications, ICAICA 2019 ; Conference date: 29-03-2019 Through 31-03-2019",

}

Chalvatzis, I, Karras, DA & Papademetriou, R 2019, Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment. in Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA). vol. 1, Institute of Electrical and Electronics Engineers Inc., USA, 2019 IEEE International Conference on Artificial Intelligence and Computer Applications, Dalian, China, 29/03/19. https://doi.org/10.1109/ICAICA.2019.8873438

Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment. / Chalvatzis, Ilias; Karras, Dimitrios A.; Papademetriou, Rallis.
Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA). Vol. 1 USA: Institute of Electrical and Electronics Engineers Inc., 2019.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment

AU - Chalvatzis, Ilias

AU - Karras, Dimitrios A.

AU - Papademetriou, Rallis

PY - 2019/10/17

Y1 - 2019/10/17

N2 - Risk Assessment has been identified as a critical issue in computer infrastructures, especially in medium to large scale organizations and enterprises. The goal of this research report is to provide a virtual machine based framework for testing the performance of vulnerability scanners applied to such enterprises, focused to small and medium size ones. Moreover, the purpose of this paper is to compare three of the most wellknown free vulnerability scanning solutions (Nessus, OpenVAS, Nmap Scripting Engine) in regards to how they can be used to automate the process of Risk Assessment in an organization, based on the herein presented experimental evaluation framework involving virtual machine testing.

AB - Risk Assessment has been identified as a critical issue in computer infrastructures, especially in medium to large scale organizations and enterprises. The goal of this research report is to provide a virtual machine based framework for testing the performance of vulnerability scanners applied to such enterprises, focused to small and medium size ones. Moreover, the purpose of this paper is to compare three of the most wellknown free vulnerability scanning solutions (Nessus, OpenVAS, Nmap Scripting Engine) in regards to how they can be used to automate the process of Risk Assessment in an organization, based on the herein presented experimental evaluation framework involving virtual machine testing.

KW - Vulnerability Scanning

KW - Risk Assessment

KW - Nessus

KW - OpenVAS

KW - Nmap Scripting Engine

UR - http://www.scopus.com/inward/record.url?scp=85074430877&partnerID=8YFLogxK

U2 - 10.1109/ICAICA.2019.8873438

DO - 10.1109/ICAICA.2019.8873438

M3 - Conference contribution

SN - 978-1-7281-1224-4

VL - 1

BT - Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA)

PB - Institute of Electrical and Electronics Engineers Inc.

CY - USA

T2 - 2019 IEEE International Conference on Artificial Intelligence and Computer Applications

Y2 - 29 March 2019 through 31 March 2019

ER -

Chalvatzis I, Karras DA, Papademetriou R. Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment. In Proceedings of 2019 IEEE International Conference on Artificial Intelligence and Computer Applications (ICAICA). Vol. 1. USA: Institute of Electrical and Electronics Engineers Inc. 2019 doi: 10.1109/ICAICA.2019.8873438

Evaluation of security vulnerability scanners for small and medium enterprises business networks resilience towards risk assessment

Abstract

Conference

Keywords

UN SDGs

Access to Document

Fingerprint

Cite this