SonQBChau
commented
2 years ago Gene said you are on the right track. NIST is a reliable source on security-related information. A related source is “National Vulnerability Database” and its CVSS score: https://nvd.nist.gov/vuln-metrics/cvss https://en.wikipedia.org/wiki/Common_Vulnerability_Scoring_System
I’m looking at the column “hosting_isp”, and attempting to quantify whether some are more susceptible to security risk (be it in terms of injection, broken authentication or others) compared to others. I managed to find two documents that highlight the gold standards that hosting web servers should adhere to. NIST SP 800-123 and NIST SP 800-44 v2. https://csrc.nist.gov/publications/detail/sp/800-123/final https://csrc.nist.gov/publications/detail/sp/800-44/version-2/final
I’m wondering if I’m on the right track