Attack graphs for defending cyber assets

摘要

Next Generation security tools will have proactive security strategy far beyond the classical firewalls and antivirus scanners possess. Attack graphs vulnerabilities chain or multistage, multi-host attacks is valuable input for defenders. Importance of Attack graphs and one approach to formulate and use it to defend cyber assets has been put forward in this paper. Further analysis using graph theory has been carried out on the attack graph for Vulnerability assessment and Target node identification. A vital concept has been introduced as Pivot node and the process of its identification has been discussed in this paper. Finally authors discusses implementation of the concepts in their cyber warfare testbed.