Professional Documents
Culture Documents
Segurança de Sistemas Informáticos: João Marco Silva Joaomarco@di - Uminho.pt
Segurança de Sistemas Informáticos: João Marco Silva Joaomarco@di - Uminho.pt
Segurança de
Sistemas Informáticos
João Marco Silva
joaomarco@di.uminho.pt
2020/2021
Concepts
• What is information security?
• Integrity
• Availability
• cve.mitre.org
Impact metrics Integrity impact (I) None (N); Low (L); High (H)
None 0.0
• nvd.nist.gov
• MITRE
• cve.mitre.org
• CVE details
• www.cvedetails.com
• Rapid7
• www.rapid7.com/db/vulnerabilities
• Category system
• Metric groups
Source: cwe.mitre.org/cwss/cwss_v1.0.1.html
OpenSSL vulnerability
• www.exploit-db.com
• Ficha de exercícios 1