Novel method of assessing network security risks based on vulnerability correlation graph

2012 ◽  
Author(s):  
Li Liang ◽  
Jungang Yang ◽  
Guqing Liu ◽  
Guangliang Zhu ◽  
Yanfeng Yang
Keyword(s):  
Network Security ◽  
Security Risks ◽  
Correlation Graph ◽  
Novel Method

scholarly journals Research on Power Network Security Technology and Protection

2018 ◽  
Vol 246 ◽  
pp. 03016
Author(s):  
Aidong Xu ◽  
Kai Fan ◽  
Hang Yang
Keyword(s):  
Network Security ◽  
Power System ◽  
Rapid Development ◽  
Information Communication ◽  
Security Technology ◽  
Security Risks ◽  
Safety Control ◽  
Whole Process ◽  
Internal Network ◽  
Network Equipment

With the rapid development of information technology construction in the power industry, research on network security has become a problem that cannot be ignored. This paper introduces the use of information communication network equipment at home and abroad in power system; analyzes the security risks of foreign network equipment in power system, shows the risk of power system network and the urgent need for localization of network equipment and analyzes the security of internal network of power system Risks; specific measures for the safety control of network equipment in the whole process are proposed to provide reference for power system network security protection.

Campus Network Security Program Based on Snort Network Security Intrusion Detection System

2012 ◽  
Vol 433-440 ◽  
pp. 3235-3240
Author(s):  
Ling Jia
Keyword(s):  
Network Security ◽  
Intrusion Detection ◽  
Intrusion Detection System ◽  
Detection System ◽  
Collocation Methods ◽  
Campus Network ◽  
Security Risks ◽  
Network Layer ◽  
Defense Strategies

This paper studies the security problems of campus network and summarizes the current on the current security risks and threats that campus network faces, focusing on analysis of attack-defense strategies on DOS network layer, proposing the security program of campus network which uses firewall as well as network security intrusion detection system snort. This paper analyzes the functional advantages of the program and presents in details the setup deployment and collocation methods of network security intrusion detection system based on snort in the campus network, and its application results are also summarized.

The Analysis of Enterprise Network Security Problems

2014 ◽  
Vol 602-605 ◽  
pp. 3351-3354
Author(s):  
Li Hui Wang
Keyword(s):  
Risk Management ◽  
Network Security ◽  
Computer Network ◽  
Small And Medium Enterprises ◽  
Internet Security ◽  
Review System ◽  
Security Technology ◽  
Security Risks ◽  
Enterprise Network Security ◽  
Medium Enterprises

This paper analyses the security risks of the internal and external enterprise computer network, points out that the internal internet security of enterprise should focus on prevention which includes a variety of network security technology and the establishment of logging and review system. This paper also discusses the main technology of external internet security prevention such as firewall technology and encryption technology and so on and provides some suggestions about risk management and network security for some small and medium enterprises.

scholarly journals Detecting malware based on expired command-and-control traffic

2017 ◽  
Vol 13 (7) ◽  
pp. 155014771772079 ◽  
Author(s):  
Futai Zou ◽  
Siyu Zhang ◽  
Linsen Li ◽  
Li Pan ◽  
Jianhua Li
Keyword(s):  
Network Security ◽  
High Precision ◽  
Command And Control ◽  
Behavioral Characteristics ◽  
Security Risks ◽  
Domain Name ◽  
Security Environment ◽  
And Control ◽  
Control Traffic ◽  
Domain Name Service

In this article, we analyze the behavioral characteristics of domain name service queries produced by programs and then design an algorithm to detect malware with expired command-and-control domains based on the key feature of domain name service traffic, that is, repeatedly querying domain with a fixed interval. In total, 3027 malware command-and-control domains in the network traffic of Shanghai Jiao Tong University, affecting 249 hosts, were successfully detected, with a high precision of 92.0%. This algorithm can find those malware with expired command-and-control domains that are usually ignored by current research and would have important value for eliminating network security risks and improving network security environment.

Network Security Auditing

2011 ◽  
pp. 131-157
Author(s):  
Yin Pan ◽  
Bo Yuan ◽  
Sumita Mishra
Keyword(s):  
Network Security ◽  
Information Security ◽  
Operating Systems ◽  
Online Shopping ◽  
Security Risks ◽  
Industry Standards ◽  
Federal Laws ◽  
Security Audits ◽  
Security Regulations ◽  
Identity Protection

As people increasingly rely on computer systems and networks for services such as online banking, online shopping, and socialization, information security for identity protection and privacy has become more important today than ever. Businesses and organizations are also obligated to provide such security to comply with state and federal laws and regulations. Managing security risks and ensuring compliance with information security regulations and industry standards have become important for businesses and organizations. Security auditing is an effective process to assess policies, procedures, and controls in identifying risks associated with networks and various operating systems. This chapter emphasizes network security audits and discusses various auditing procedures and technologies to identify and examine threats and vulnerabilities in computer networks, and to determine how to assess and manage risk posed to a network.

scholarly journals Flow-based Routing Model with Load Balancing on the Traffic Engineering Principles Taking into Account the Information Security Risks

2020 ◽  
pp. 32-42
Author(s):  
Maryna Yevdokymenko ◽  
Maryna Shapoval ◽  
Alla Krepko
Keyword(s):  
Network Security ◽  
Information Security ◽  
Load Balancing ◽  
Traffic Engineering ◽  
Telecommunication Network ◽  
Packet Transmission ◽  
Secure Routing ◽  
Security Requirements ◽  
Security Risks ◽  
Link Utilization

A practical approach to load balancing in a telecommunication network (TCN) is implementing Traffic Engineering (TE) technology principles to reduce link utilization and improve QoS level. In order to adapt TE solutions with network security requirements, this paper proposes a mathematical model for secure routing, which belongs to the class of flow-based optimization solutions. The model is based on the conditions of multi-flow routing implementation, flow conservation, and TCN link overload prevention. Due to this, the problem of secure routing is formulated in an optimization form. The model’s novelty is the modified conditions of load balancing in TCN. Along with the indicators of link capacity with the help of weighting coefficients, the network security (NS) indicators of TCN elements are also taken into account. The network security (NS) indicators in the TCN modeling process include information security risks of routers and communication links, losses from breach of confidentiality and integrity of information, probability of existing vulnerabilities exploitation, etc. The study confirmed the effectiveness of the proposed solution. On the test TCN topology, it is demonstrated that the use of a secure routing model allows to calculate the routes and provide such an order of load balancing, which compromises meeting the requirements of both QoS and NS. In the routing process, information security risk reduction in packet transmission by about 11.3% was accompanied by an increase (on average by 26%) in the upper bound of the network link utilization

Sign in / Sign up

Export Citation Format

Share Document