Method to generate attack graphs for assessing the overall security of networks

MAN Da-peng1; ZHOU Yuan2; YANG Wu1; YANG Yong-tian1

您当前的位置：

首页 >

文章列表页 >

Method to generate attack graphs for assessing the overall security of networks

更新时间：2024-10-14

- Method to generate attack graphs for assessing the overall security of networks
- Vol. 30, Issue 3, Pages: 1-5(2009)
- 作者机构：
  
  1. 哈尔滨工程大学信息安全研究中心
  2. 国家计算机网络应急技术处理协调中心
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP393.08
- Published：2009
- 稿件说明：
移动端阅览
MAN Da-peng1, ZHOU Yuan2, YANG Wu1, et al. Method to generate attack graphs for assessing the overall security of networks[J]. 2009, 30(3): 1-5.
DOI：

MAN Da-peng1, ZHOU Yuan2, YANG Wu1, et al. Method to generate attack graphs for assessing the overall security of networks[J]. 2009, 30(3): 1-5. DOI：

摘要

为了评估网络的整体安全性

提出了一种新的攻击图生成方法。该方法采用正向、广度优先的策略搜索网络弱点间的依赖关系。利用限制攻击步骤数和状态节点可达性的策略来解决攻击图生成过程中存在的状态爆炸问题。实验结果表明

利用该方法生成的攻击图能够用于评估网络的整体安全性

采用的限制策略可以有效地去除攻击图中的冗余节点和边

并且降低了攻击图生成时的系统资源消耗。

Abstract

In order to evaluate the overall security of networks

a new method for generating attack graphs was proposed.The method used breadth-first algorithm to search the dependence of network vulnerabilities.To solve the state explosion problem

the strategies that limited the number of attack steps and the reachability of state nodes were adopted in gener-ating attack graphs.The experimental results show that the generated attack graphs can help security administrators to evaluate the overall security of networks

and the adopted optimization strategies are effective to remove redundant edges and nodes in attack graphs and decrease the system overhead during generating attack graphs.

关键词

Keywords

references

Views

1161

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Approach to making strategies for network security enhancement based on attack graphs

Host security assessment method based on attack graph

Network intrusion intention analysis model based on Bayesian attack graph

Multi-type honeypot deployment scheme based on Stackelberg game and DQN

Survey of research on Tor-based anonymous networking technologies

Related Author

SI Jia-quan1

ZHANG Bing2

Hongyu YANG

Haihang YUAN

Liang ZHANG

Zhiyong LUO

Xu YANG

Jiahui LIU

Related Institution

College of Safety Science and Engineering, Civil Aviation University of China

College of Computer Science and Technology, Civil Aviation University of China

College of Information, University of Arizona

School of Computer Science and Technology, Harbin University of Science and Technology

School of Computer Science and Engineering, Xi’an University of Technology

AI问答

⁰