Archivio Istituzionale della RicercaMisconfigurations within Operational Technology (OT) environments represent a significant source of cyber risk, often resulting in critical disruptions to industrial processes. However, the absence of standardized methodologies for quantifying their impact hinders effective risk assessment and prioritization. This study proposes a novel and fully automated framework that maps misconfigurations to the Common Weakness Enumeration (CWE) taxonomy through semantic similarity techniques, employing state-of-the-art sentence embedding models and cosine similarity metrics. The framework enables the computation of quantitative risk indicators by linking the identified CWEs to associated Common Vulnerabilities and Exposures (CVEs) and aggregating their Common Vulnerability Scoring System (CVSS) scores. A voting ensemble of pre-trained language models is introduced to enhance robustness and semantic accuracy. Experimental validation demonstrates improved precision over single-model baselines, confirming the efficacy of the proposed approach. The resulting system offers a scalable, data-driven tool for OT stakeholders to evaluate and prioritize misconfigurationrelated cybersecurity threats systematically.
NLP-based automated scoring of OT misconfigurations via CWE and CVSS mapping / Todaro, Mario; Colletto, Alberto Salvatore; Viticchié, Alessio; Aliberti, Alessandro. - ELETTRONICO. - (2025), pp. 65-70. ( Research and Technologies for Society and Industry (RTSI) Gammarth, Tunis 24-26 August, 2025) [10.1109/RTSI64020.2025.11212450].
NLP-based automated scoring of OT misconfigurations via CWE and CVSS mapping
Alberto Salvatore Colletto;Alessandro Aliberti
2025
Abstract
Misconfigurations within Operational Technology (OT) environments represent a significant source of cyber risk, often resulting in critical disruptions to industrial processes. However, the absence of standardized methodologies for quantifying their impact hinders effective risk assessment and prioritization. This study proposes a novel and fully automated framework that maps misconfigurations to the Common Weakness Enumeration (CWE) taxonomy through semantic similarity techniques, employing state-of-the-art sentence embedding models and cosine similarity metrics. The framework enables the computation of quantitative risk indicators by linking the identified CWEs to associated Common Vulnerabilities and Exposures (CVEs) and aggregating their Common Vulnerability Scoring System (CVSS) scores. A voting ensemble of pre-trained language models is introduced to enhance robustness and semantic accuracy. Experimental validation demonstrates improved precision over single-model baselines, confirming the efficacy of the proposed approach. The resulting system offers a scalable, data-driven tool for OT stakeholders to evaluate and prioritize misconfigurationrelated cybersecurity threats systematically.
| File | Dimensione | Formato | |
|---|---|---|---|
|
2025197194.pdf
accesso aperto
Tipologia:
2. Post-print / Author's Accepted Manuscript
Licenza:
Pubblico - Tutti i diritti riservati
Dimensione
188.38 kB
Formato
Adobe PDF
|
188.38 kB | Adobe PDF | Visualizza/Apri |
|
NLP-based_automated_scoring_of_OT_misconfigurations_via_CWE_and_CVSS_mapping.pdf
accesso riservato
Tipologia:
2a Post-print versione editoriale / Version of Record
Licenza:
Non Pubblico - Accesso privato/ristretto
Dimensione
895.64 kB
Formato
Adobe PDF
|
895.64 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/3002714