Precise Estimation of Local Probabilities for Bayesian Attack Graph Analysis

Attack graph can simulate the possible paths used by attackers to invade the network. By using the attack graph, the administrator can evaluate the security of the network and analyze and predict the behavior of the attacker. Although there are many research studies on attack graph, there is no systematic survey for the related analysis methods. This paper firstly introduces the basic concepts, generation methods, and computing tasks of the attack graph, and then, several kinds of analysis methods of attack graph, namely, graph-based method, Bayesian network-based method, Markov model-based method, cost optimization method, and uncertainty analysis method, are described in detail. Finally, comparative study of the methods and future work are provided. We believe that this work would help the research community to understand the attack graph analysis method systematically.

Download Full-text

TAG: Topological Attack Graph Analysis Tool

2019 3rd Cyber Security in Networking Conference (CSNet) ◽

10.1109/csnet47905.2019.9108979 ◽

2019 ◽

Author(s):

Marek Malowidzki ◽

Damian Hermanowski ◽

Przemyslaw Berezinski

Keyword(s):

Graph Analysis ◽

Analysis Tool ◽

Attack Graph

Download Full-text

An empirical test of the accuracy of an attack graph analysis tool

Information and Computer Security ◽

10.1108/ics-06-2014-0036 ◽

2015 ◽

Vol 23 (5) ◽

pp. 516-531 ◽

Cited By ~ 11

Author(s):

Teodor Sommestad ◽

Fredrik Sandström

Keyword(s):

Empirical Test ◽

Graph Analysis ◽

Analysis Tool ◽

Attack Graph

Download Full-text

A Reinforcement Learning Approach for Attack Graph Analysis

2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) ◽

10.1109/trustcom/bigdatase.2018.00041 ◽

2018 ◽

Cited By ~ 1

Author(s):

Mehdi Yousefi ◽

Nhamo Mtetwa ◽

Yan Zhang ◽

Huaglory Tianfield

Keyword(s):

Reinforcement Learning ◽

Learning Approach ◽

Graph Analysis ◽

Attack Graph

Download Full-text

A Heuristic Method of Attack Graph Analysis for Network Security Hardening

2014 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery ◽

10.1109/cyberc.2014.18 ◽

2014 ◽

Cited By ~ 1

Author(s):

Zhao Chao ◽

Wang Huiqiang ◽

Guo Fangfang ◽

Zhou Mo ◽

Zhang Yushu

Keyword(s):

Network Security ◽

Heuristic Method ◽

Graph Analysis ◽

Attack Graph ◽

Security Hardening

Download Full-text

Analytical Approach to Attack Graph Analysis for Network Security

2010 International Conference on Availability, Reliability and Security ◽

10.1109/ares.2010.21 ◽

2010 ◽

Cited By ~ 5

Author(s):

Phongphun Kijsanayothin ◽

Rattikorn Hewett

Keyword(s):

Network Security ◽

Analytical Approach ◽

Graph Analysis ◽

Attack Graph

Download Full-text

Attack Graph Analysis for Network Anti-Forensics

International Journal of Digital Crime and Forensics ◽

10.4018/ijdcf.2014010103 ◽

2014 ◽

Vol 6 (1) ◽

pp. 28-50 ◽

Cited By ~ 2

Author(s):

Rahul Chandran ◽

Wei Q. Yan

Keyword(s):

Cyber Attacks ◽

Successful Implementation ◽

Graph Analysis ◽

Test Bed ◽

Network Attacks ◽

Attack Graphs ◽

Defense Strategies ◽

Attack Graph ◽

Attack Path ◽

First Time

The development of technology in computer networks has boosted the percentage of cyber-attacks today. Hackers are now able to penetrate even the strongest IDS and firewalls. With the help of anti-forensic techniques, attackers defend themselves, from being tracked by destroying and distorting evidences. To detect and prevent network attacks, the main modus of operandi in network forensics is the successful implementation and analysis of attack graph from gathered evidences. This paper conveys the main concepts of attack graphs, requirements for modeling and implementation of graphs. It also contributes the aspect of incorporation of anti-forensic techniques in attack graph which will help in analysis of the diverse possibilities of attack path deviations and thus aids in recommendation of various defense strategies for better security. To the best of our knowledge, this is the first time network anti-forensics has been fully discussed and the attack graphs are employed to analyze the network attacks. The experimental analysis of anti-forensic techniques using attack graphs were conducted in the proposed test-bed which helped to evaluate the model proposed and suggests preventive measures for the improvement of security of the networks.

Download Full-text

Efficient Attack Graph Analysis through Approximate Inference

ACM Transactions on Privacy and Security ◽

10.1145/3105760 ◽

2017 ◽

Vol 20 (3) ◽

pp. 1-30 ◽

Cited By ~ 6

Author(s):

Luis Muñoz-González ◽

Daniele Sgandurra ◽

Andrea Paudice ◽

Emil C. Lupu

Keyword(s):

Approximate Inference ◽

Graph Analysis ◽

Attack Graph

Download Full-text