A New Method of Vulnerability Taxonomy Based on Information Security Attributes

Information security has become the hot issue in the information age. Vulnerabilities existed in information systems threat the information security seriously. Among large number of methods of vulnerability taxonomies, there is not a method on the aspect of information security. A new method of vulnerability taxonomy is proposed based on five attributes of information security, which concludes integrity, availability, confidentiality, controllability and reliability. The proposed method recognizes vulnerabilities in terms of information security, and the feasibility is verified using some common vulnerabilities.