A Security Analysis Framework Powered by an Expert System

Today's IT systems are facing a major challenge in confronting the fast rate ofemerging security threats. Although many security tools are being employedwithin organizations in order to standup to these threats, the information revealedis very inferior in providing a rich understanding to the consequences of thediscovered vulnerabilities. We believe expert systems can play an important rolein capturing any security expertise from various sources in order to provide theinformative deductions we are looking for from the supplied inputs. Throughoutthis research effort, we have built the Open Security Knowledge Engineered(OpenSKE) framework 1, which is a security analysis framework built around anexpert system in order to reason over the security information collected fromexternal sources. Our implementation has been published online in order tofacilitate and encourage online collaboration to increase the practical researchwithin the field of security analysis.