Regresar

Development Processes of Vulnerability Detection Systems: A Systematic Review, Approaches, Challenges, and Future Directions

Abstract:

In cybersecurity, a vulnerability is any software or hardware failure that compromises the information’s integrity, availability, or confidentiality. Nowadays, the number of vulnerabilities is increasing exponentially. The early detection, analysis, and efficient treatment of vulnerabilities constitute significant challenges for organizations, as they are arduous and expensive processes. This study aims to thoroughly and systematically research the approaches, techniques, and tools used in implementing vulnerability detection and scanning systems. We conduct a systematic literature review based on the methodological guide of Barbara Kitchenham to carry out a synthesis of the evidence available in primary studies in the last five years. The results show that studies evaluate the efficiency and complexity of the development process for vulnerability detection through a combination of methods, techniques, tools, and metrics. Moreover, this study serves as a baseline for establishing a new development process proposal to benefit organizations planning to create custom vulnerability detection systems. Finally, current challenges are highlighted, and future research directions for addressing them are explored.