Risk assessment method for network attack surface based on Bayesian attack graph

Risk assessment method for network attack surface based on Bayesian attack graph

Aiming at the lack of objective risk assessment for the network attack surface on moving target defense,in order to realize the security risk assessment for the network system,and calculate the potential attack paths,a risk assessment method for network attack surface based on Bayesian attack graph...

Full description

Saved in:
Bibliographic Details
Main Authors: Yuyang ZHOU, Guang CHENG, Chunsheng GUO
Format: Article
Language:English
Published: POSTS&TELECOM PRESS Co., LTD 2018-06-01
Series:网络与信息安全学报
Subjects:
moving target defense
security risk assessment
Bayesian attack graph
attack surface
attack path
Online Access:http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2018053
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Aiming at the lack of objective risk assessment for the network attack surface on moving target defense,in order to realize the security risk assessment for the network system,and calculate the potential attack paths,a risk assessment method for network attack surface based on Bayesian attack graph was proposed.The network system resources,vulnerability and dependencies between them were used to establish Bayesian attack graph.Considering dependencies between nodes,the correlation between the resource and the influence of attacks on the attack path,the probability of each state that attackers can reach and the maximum probability attack path can be inferred.The experimental results prove the feasibility and effectiveness of the proposed network attack surface risk assessment method,which can provide a good support for the selection of dynamic defensive measures of attack surface.
ISSN:2096-109X

Similar Items