Douglas Wiemer

TL;DR: In this article, a service-level security risk analysis system, methods, and Graphical User Interfaces (GUI) is described, and at least one security risk to the service is determined by analyzing security vulnerabilities associated with the identified assets.

TL;DR: In this article, security vulnerability information aggregation techniques are disclosed, where the vulnerability information associated with one or more security vulnerabilities is obtained from multiple sources and aggregated into respective unified vulnerability definitions.

TL;DR: In this paper, a definition of a security vulnerability, which includes multiple asset characteristics such as an asset platform that may be exploited via the security vulnerability and an asset platforms that is affected when the exploited asset platform is exploited by the security vulnerabilities, is compared with definitions of one or more assets of an information system.

TL;DR: In this paper, a threat and risk analysis for a network that has a high degree of inter-relationships and interdependencies among the assets comprising it, using a "cut set" enumeration method, is presented.

TL;DR: In this article, a malware detection and response system based on traffic pattern anomalies detection is provided, whereby packets associated with a variety of protocols on each port of a network element are counted distinctly for each direction.