A novel approach for analysis of attack graph

机译：一种新的攻击图分析方法

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Attack graph technique is a common tool for the evaluation of network security. However, attack graphs are generally too large and complex to be understood and interpreted by security administrators. This paper proposes an analysis framework for security attack graphs for a given IT infrastructure system. First, in order to facilitate the discovery of interconnectivities among vulnerabilities in a network, multi-host multi-stage vulnerability analysis (MulVAL) is employed to generate an attack graph for a given network topology. Then a novel algorithm is applied to refine the attack graph and generate a simplified graph called a transition graph. Next, a Markov model is used to project the future security posture of the system. Finally, the framework is evaluated by applying it on a typical IT network scenario with specific services, network configurations, and vulnerabilities.

机译：攻击图技术是评估网络安全性的常用工具。但是，攻击图通常太大且太复杂，安全管理员无法理解和解释。本文针对给定的IT基础架构系统，提出了一个针对安全攻击图的分析框架。首先，为了促进发现网络中漏洞之间的互连性，采用多主机多阶段漏洞分析（MulVAL）生成给定网络拓扑的攻击图。然后，将一种新颖的算法应用于细化攻击图并生成称为过渡图的简化图。接下来，使用马尔可夫模型来预测系统的未来安全状态。最后，通过将该框架应用于具有特定服务，网络配置和漏洞的典型IT网络场景，对该框架进行评估。

著录项

来源
《IEEE International Conference on Intelligence and Security Informatics》|2017年|7-12|共6页
会议地点
作者
Mehdi Yousefi; Nhamo Mtetwa; Yan Zhang; Huaglory Tianfield;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Security; Servers; Markov processes; Network topology; Protocols; Ports (Computers); Complexity theory;

机译：安全性;服务器;马尔可夫过程;网络拓扑;协议;端口（计算机）;复杂性理论;

相似文献

外文文献
中文文献
专利

1. Cryptography: all-out attacks or how to attack cryptography without intensive cryptanalysis [J] . Jean-Baptiste Bedrune, Eric Filiol, Frederic Raynal Journal in computer virology . 2010,第3期

机译：密码学：全面的攻击或如何在不进行深入密码分析的情况下攻击密码学
2. Attack scenario reconstruction approach using attack graph and alert data mining [J] . Hu Hao, Liu Jing, Zhang Yuchen, Journal of information security and applications . 2020,第Octa期

机译：使用攻击图和警报数据挖掘攻击场景重建方法
3. Efficient Defense Decision-Making Approach for Multistep Attacks Based on the Attack Graph and Game Theory [J] . Jing Liu, Yuchen Zhang, Hao Hu, Mathematical Problems in Engineering: Theory, Methods and Applications . 2020,第1期

机译：基于攻击图和博弈论的多步攻击有效的防御决策方法
4. An Evolutionary Approach of Attack Graphs and Attack Trees: A Survey of Attack Modeling [C] . S. Haque, M. Keffeler, T. Atkison International Conference on Security and Management . 2017

机译：攻击图和攻击树的进化方法：攻击建模调查
5. A heuristic approach to network hardening using attack graphs . [D] . Islam, Tania. 2009

机译：一种利用攻击图进行网络强化的启发式方法。
6. HILIC-MS Rat Brain Analysis A New Approach for the Study of Ischemic Attack [O] . Natalia Miękus, Lucyna Konieczna, Przemysław Kowiański, 2017

机译：HILIC-MS大鼠脑部分析一种研究缺血性发作的新方法
7. EEG Signal Discrimination using Non-linear Dynamics in the EMD Domain S. M. Shafiul Alam,S. M. Shafiul Alam,Aurangozeb, and Syed TarekShahriar Abstract—An EMD-chaos based approach is proposed todiscriminate EEG signals corresponding to healthy persons,and epileptic patients during seizure-free intervals and seizureattacks. An electroencephalogram (EEG) is first empiricallydecomposed to intrinsic mode functions (IMFs). The nonlineardynamics of these IMFs are quantified in terms of the largestLyapunov exponent (LLE) and correlation dimension (CD).This chaotic analysis in EMD domain is applied to a large groupof EEG signals corresponding to healthy persons as well asepileptic patients (both with and without seizure attacks). It isshown that the values of the obtained LLE and CD exhibitfeatures by which EEG for seizure attacks can be clearlydistinguished from other EEG signals in the EMD domain.Thus, the proposed approach may aid researchers in developingeffective techniques to predict seizure activities. Index Terms—Electroencephalogram (EEG), empiricalmode decomposition (EMD), largest Lyapunov exponent (LLE),correlation dimension (CD), epileptic seizures. The Authors are with the Electrical and Electronic EngineeringDepartment, Bangladesh University of Engineering and Technology,Dhaka-1000, Bangladesh (e-mail: imamul@eee.buet.ac.bd) PDF Cite: S. M. Shafiul Alam,S. M. Shafiul Alam,Aurangozeb, and Syed Tarek Shahriar, "EEG Signal Discrimination using Non-linear Dynamics in the EMD Domain," International Journal of Computer and Electrical Engineering vol. 4, no. 3, pp. 326-330, 2012. PREVIOUS PAPER Perception of Emotions Using Constructive Learningthrough Speech NEXT PAPER Physical Layer Impairments Aware OVPN Connection Selection Mechanisms Copyright © 2008-2013. International Association of Computer Science and Information Technology Press (IACSIT Press) [O] . S. M. Shafiul Alam, Syed TarekShahriar 2012

机译：EEG信号在EMD域S. S. Shafiul Alam，S中的非线性动力学使用非线性动力学。 M. Shafiul Alam，Aurangozeb和Syed Tarekshahriar摘要 - 基于EMD Chaos的方法，提出了对应于健康人的EEG信号，癫痫发作期间的癫痫患者和Seizureattacks。脑电图（EEG）首先被凭经上分解为内在模式功能（IMF）。这些IMF的非线性动力学在最大范围的指数（LLE）和相关尺寸（CD）方面是量化的。本域中的混沌分析应用于与健康人相对应的大型脑电图（Asepileptic患者）（两者都有癫痫发作）。因此，所获得的LLE和CD表展的价值可以从EMD领域的其他EEG信号中清晰地区分脑电图的表达展示。本拟议的方法可以帮助研究人员以预测癫痫发作的癫痫发作技术。索引术语 - 脑电图（EEG），仿真态分解（EMD），最大的Lyapunov指数（LLE），相关维度（CD），癫痫发作。作者与电气电子和电子工程公司，孟加拉国工程和技术大学，孟加拉国达卡 - 1000（电子邮件：imamul@eee.buet.ac.bd）pdf cite：s. m. shafiul Alam，s。 M. Shafiul Alam，Aurangozeb和Syed Tarek Shahriar，“EEG信号歧视在EMD领域的非线性动态，”计算机电气工程卷国际杂志。 4，不。 3，pp。326-330,2012，上一篇论文对情绪的看法，使用建设性的学习言论下一篇论文物理层障碍意识到OVPN连接选择机制版权所有©2008-2013。国际计算机科学与信息技术协会出版社（IACSIT Press）
8. Preventing Wormhole Attacks on Wireless Ad Hoc Networks: A Graph Theoretic Approach [R] . Lazos, L. , Poovendran, R. , Meadows, C. , 2005

机译：防止无线ad Hoc网络上的虫洞攻击：图论理论方法

A novel approach for analysis of attack graph

摘要

著录项

相似文献

相关主题

期刊订阅