Enable javascript in your browser for better experience. Need to know to enable it? Go here.
关闭
Ask Tai
Ask Tai
Download
Techniques Back
Published : Apr 03, 2024
NOT ON THE CURRENT EDITION
This blip is not on the current edition of the Radar. If it was on one of the last few editions, it is likely that it is still relevant. If the blip is older, it might no longer be relevant and our assessment might be different today. Unfortunately, we simply don't have the bandwidth to continuously review blips from previous editions of the Radar. Understand more
Apr 2024
Assess ?

Zoom 最近开源了其漏洞影响评分系统(Vulnerability Impact Scoring System)—— VISS。这个系统主要关注的是对安全措施的漏洞评分的优先级排序。VISS 与通用漏洞评分系统(CVSS)的不同之处在于,它不侧重于对最坏情况进行预测,而是试图从防御者的角度更客观地衡量漏洞的影响。为此,VISS 提供了一个基于网页的 UI,基于多个参数来计算漏洞分数 — 这些参数按照平台、基础设施和数据组进行分类 — 包括对平台的影响、影响的租户数量、数据影响等。尽管我们对这个特定工具还没有太多的实践经验,但我们认为这种基于行业上下文的优先级定制的评估方法是值得考虑的。

Download the PDF

 

 

 

English | Português 

Sign up for the Technology Radar newsletter

 

 

Subscribe now

Download the PDF

 

 

 

English | Português 

Sign up for the Technology Radar newsletter

 

 

Subscribe now

Visit our archive to read previous volumes

Go to archive