Differential Attack Graph-Based Approach for Assessing Change in the Network Attack Surface

As networks continue to grow in size and complexity, automatic assessment of the security vulnerability becomes increasingly important. The typical means by which an attacker breaks into a network is through a series of exploits, where each exploit in the series satisfies the pre-condition for subsequent exploits and makes a causal relationship among them. Such a series of exploits constitutes an attack path where the set of all possible attack paths form an attack graph. Attack graphs reveal the threat by enumerating all possible sequences of exploits that can be followed to compromise a given critical resource. The contribution of this chapter is to identify the most probable attack path based on the attack surface measures of the individual hosts for a given network and also identify the minimum possible network securing options for a given attack graph in an automated fashion. The identified network securing options are exhaustive and the proposed approach aims at detecting cycles in forward reachable attack graphs. As a whole, the chapter deals with identification of probable attack path and risk mitigation which may facilitate in improving the overall security of an enterprise network.

Download Full-text

Metrics suite for network attack graph analytics

Proceedings of the 9th Annual Cyber and Information Security Research Conference on - CISR '14 ◽

10.1145/2602087.2602117 ◽

2014 ◽

Cited By ~ 30

Author(s):

Steven Noel ◽

Sushil Jajodia

Keyword(s):

Graph Analytics ◽

Network Attack ◽

Attack Graph

Download Full-text

Using Network Attack Graph to Predict the Future Attacks

2007 Second International Conference on Communications and Networking in China ◽

10.1109/chinacom.2007.4469413 ◽

2007 ◽

Cited By ~ 6

Author(s):

Jie Lei ◽

Zhi-tang Li

Keyword(s):

Network Attack ◽

Attack Graph ◽

The Future

Download Full-text

Decision Diagram-Based Modeling of Network Reachability

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.513-517.1779 ◽

2014 ◽

Vol 513-517 ◽

pp. 1779-1782

Author(s):

Zheng Chan Rao ◽

Tian Yin Pu

Keyword(s):

Computer Network ◽

Binary Decision Diagrams ◽

Main Task ◽

Decision Diagrams ◽

Binary Decision ◽

Network Attack ◽

Attack Graph ◽

Network Scanning ◽

Graph Generation

The computer network attack graph generation method obtained mostly through network scanning, this network reachability information, this approach takes a long presence information and incomplete defects by analyzing network reachability main task of research and developing trends is proposed based on binary decision diagrams algorithm approach to achieve network reachability studies. The algorithm uses the decision diagram modeling firewall rules, through the collection operations to achieve network reachability studies.

Download Full-text

Research on Automatic Generation and Analysis Technology of Network Attack Graph

2020 IEEE 6th Intl Conference on Big Data Security on Cloud (BigDataSecurity), IEEE Intl Conference on High Performance and Smart Computing, (HPSC) and IEEE Intl Conference on Intelligent Data and Security (IDS) ◽

10.1109/bigdatasecurity-hpsc-ids49724.2020.00033 ◽

2020 ◽

Author(s):

Wenhui Hu ◽

Long Zhang ◽

Xueyang Liu ◽

Yu Huang ◽

Minghui Zhang ◽

...

Keyword(s):

Automatic Generation ◽

Network Attack ◽

Attack Graph

Download Full-text

A Suite of Metrics for Network Attack Graph Analytics

Network Security Metrics ◽

10.1007/978-3-319-66505-4_7 ◽

2017 ◽

pp. 141-176 ◽

Cited By ~ 6

Author(s):

Steven Noel ◽

Sushil Jajodia

Keyword(s):

Graph Analytics ◽

Network Attack ◽

Attack Graph

Download Full-text

Computer Network Attack Modeling and Network Attack Graph Study

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.1079-1080.816 ◽

2014 ◽

Vol 1079-1080 ◽

pp. 816-819 ◽

Cited By ~ 1

Author(s):

Yuan Qin

Keyword(s):

Network Security ◽

Computer Network ◽

Multiple Point ◽

Network Attack ◽

Network Information ◽

Attack Graph ◽

Attack Modeling ◽

Network Intrusion ◽

Single Host ◽

Attack Path

With the development of computer network and rapid popularity of Internet, network information security has become the focus of safeguarding national security and social stability. In the network security event, the hacker often can’t successfully intrude into the network by means of a single host / services hacker. With the help of various kinds of "vulnerability" generated bydifferent relationship existing in multiple point multiple host, the hacker can achieve the purpose of network intrusion. Therefore one important aspect of network security is after obtaining the vulnerability of the network information, considering a combination of multiple exploits and analyzing the attack path of network penetration attacks that the attacker may take.

Download Full-text