Vulnerability Management for an Enterprise Resource Planning System

TL;DR

This paper analyzes failure types and vulnerabilities in ERP systems used in technical educational institutions, proposing a vulnerability management cycle and emphasizing the importance of resiliency.

Contribution

It identifies failure levels and characteristics, summarizes their relations, and introduces a vulnerability management cycle with tools for ERP systems in TEIs.

Findings

Failure levels and characteristics are mapped and related.

A vulnerability management cycle is proposed.

The importance of resiliency in ERP systems is highlighted.

Abstract

Enterprise resource planning (ERP) systems are commonly used in technical educational institutions(TEIs). ERP systems should continue providing services to its users irrespective of the level of failure. There could be many types of failures in the ERP systems. There are different types of measures or characteristics that can be defined for ERP systems to handle the levels of failure. Here in this paper, various types of failure levels are identified along with various characteristics which are concerned with those failures. The relation between all these is summarized. The disruptions causing vulnerabilities in TEIs are identified .A vulnerability management cycle has been suggested along with many commercial and open source vulnerability management tools. The paper also highlights the importance of resiliency in ERP systems in TEIs.