Research on network attack analysis method based on attack graph of absorbing Markov chain
Existing intrusion path studies based on attack graph lack consideration of factors other than basic network environment information when calculating the state transition probability.In order to analyze the security of target network comprehensively and reasonably, a network attack analysis method b...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2023-02-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2023002/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841540027056652288 |
|---|---|
| author | Haiyan KANG Molan LONG |
| author_facet | Haiyan KANG Molan LONG |
| author_sort | Haiyan KANG |
| collection | DOAJ |
| description | Existing intrusion path studies based on attack graph lack consideration of factors other than basic network environment information when calculating the state transition probability.In order to analyze the security of target network comprehensively and reasonably, a network attack analysis method based on attack graph of absorbing Markov chain was proposed.Firstly, a state transition probability normalization algorithm based on vulnerability life cycle was proposed based on attack graph.Secondly, the attack graph was mapped to the absorbing Markov chain and the state transition probability matrix was given.Finally, the state transition probability matrix was calculated to comprehensively analyze the node threat degree, attack path length and expected impact of the target network.The results show that the proposed method can effectively analyze the expected influence of node threat degree, attack path length and vulnerability life cycle on the whole network, which is helpful for security research personnel to better understand the security state of the network. |
| format | Article |
| id | doaj-art-2c65942c46b8461eadf48dba113c1c44 |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2023-02-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-2c65942c46b8461eadf48dba113c1c442025-01-14T06:23:10ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2023-02-014412213559387165Research on network attack analysis method based on attack graph of absorbing Markov chainHaiyan KANGMolan LONGExisting intrusion path studies based on attack graph lack consideration of factors other than basic network environment information when calculating the state transition probability.In order to analyze the security of target network comprehensively and reasonably, a network attack analysis method based on attack graph of absorbing Markov chain was proposed.Firstly, a state transition probability normalization algorithm based on vulnerability life cycle was proposed based on attack graph.Secondly, the attack graph was mapped to the absorbing Markov chain and the state transition probability matrix was given.Finally, the state transition probability matrix was calculated to comprehensively analyze the node threat degree, attack path length and expected impact of the target network.The results show that the proposed method can effectively analyze the expected influence of node threat degree, attack path length and vulnerability life cycle on the whole network, which is helpful for security research personnel to better understand the security state of the network.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2023002/attack graphabsorbing Markov chainvulnerability life cyclenetwork attacknetwork security analysis |
| spellingShingle | Haiyan KANG Molan LONG Research on network attack analysis method based on attack graph of absorbing Markov chain Tongxin xuebao attack graph absorbing Markov chain vulnerability life cycle network attack network security analysis |
| title | Research on network attack analysis method based on attack graph of absorbing Markov chain |
| title_full | Research on network attack analysis method based on attack graph of absorbing Markov chain |
| title_fullStr | Research on network attack analysis method based on attack graph of absorbing Markov chain |
| title_full_unstemmed | Research on network attack analysis method based on attack graph of absorbing Markov chain |
| title_short | Research on network attack analysis method based on attack graph of absorbing Markov chain |
| title_sort | research on network attack analysis method based on attack graph of absorbing markov chain |
| topic | attack graph absorbing Markov chain vulnerability life cycle network attack network security analysis |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2023002/ |
| work_keys_str_mv | AT haiyankang researchonnetworkattackanalysismethodbasedonattackgraphofabsorbingmarkovchain AT molanlong researchonnetworkattackanalysismethodbasedonattackgraphofabsorbingmarkovchain |