×

System and method for network vulnerability detection and reporting

  • US 8,700,767 B2
  • Filed: 02/10/2012
  • Issued: 04/15/2014
  • Est. Priority Date: 01/15/2002
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method comprising:

  • assigning, utilizing a computer, a vulnerability risk level to each of a plurality of vulnerabilities found on a set of computer devices;

    assigning an exposure risk level to each exposure found in the set of computer devices; and

    providing a security score for the set of computer devices that is dependent on at least the vulnerability risk levels of the vulnerabilities and the exposure risk level of the exposures found on the network;

    wherein the security score is derived from a formula of form F=a-V-E, wherein F is the security score, a is a constant, V is a vulnerability loss, and E is an exposure loss and vulnerability loss V is dependent on at least two of the assigned vulnerability risk levels and exposure loss E is dependent on at least two of the assigned exposure risk levels.

View all claims
  • 9 Assignments
Timeline View
Assignment View
    ×
    ×