EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Vers une sécurité durable des systèmes d’information: le cas de l’optimisation du vulnerability management au sein d’un environnement Cloud

Yann Goetgheluck, Pierre-Emmanuel Arduin and Myriam Merad
Additional contact information
Pierre-Emmanuel Arduin: DRM - Dauphine Recherches en Management - Université Paris Dauphine-PSL - PSL - Université Paris Sciences et Lettres - CNRS - Centre National de la Recherche Scientifique
Myriam Merad: LAMSADE - Laboratoire d'analyse et modélisation de systèmes pour l'aide à la décision - Université Paris Dauphine-PSL - PSL - Université Paris Sciences et Lettres - CNRS - Centre National de la Recherche Scientifique

Post-Print from HAL

Abstract: The security of information systems (IS) is crucial to ensuring the continuity of business operations. It is a component of the IS that must be sustainable to fulfill its primary functionwhile considering the organizations environmental responsibility objectives. An important but often overlooked aspect of IS security is the vulnerability management process, which constitutes a link between IS security and environmental responsibility. By integrating the businessaspect of organizations into vulnerability management, we can identify which vulnerabilitiesare truly critical for the concerned organization. In this work, we propose extending the Common Vulnerability Scoring System (CVSS) method to better prioritize vulnerabilities and thus reduce the number of patches, scans, and deployments that consume energy. The cases of a bank, a hospital, and a website manager are discussed to illustrate the use of the method.

Keywords: Vulnerability Management; Environmental Responsibility; IS Security; CVSS; Gestion des Vulnérabilités; Responsabilité Environnementale; Sécurité des SI (search for similar items in EconPapers)
Date: 2025-06
References: Add references at CitEc
Citations:

Published in INFORSID 2025: INFormatique des ORganisations et Systèmes d'Information et de Décision 2025, Jun 2025, Pau, France. pp.6-21

There are no downloads for this item, see the EconPapers FAQ for hints about obtaining it.

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:hal:journl:hal-05322385

Access Statistics for this paper

More papers in Post-Print from HAL
Bibliographic data for series maintained by CCSD ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-10-28
Handle: RePEc:hal:journl:hal-05322385