A new approach for network vulnerability analysis
conference contribution
posted on 2024-07-09, 22:56 authored by Hai Vu, Kenneth Khaw, Tsong ChenTsong Chen, Fei-Ching KuoWe propose in this paper a novel approach to analyze network vulnerability and to obtain a quantitative value representing the level of security achieved in an arbitrary network. Unlike previous graph-based algorithms that generate attack trees (or graphs) to cover all possible sequences of vulnerabilities and therefore are not scalable, our method utilizes the attack graph's principles, but directly analyzes and produces the desired security measure for a network without building the actual attack graph. The proposed approach relies on a unique evaluation of vulnerability metric defined in this paper and is demonstrated through an example of a network that provides voice over IP services.
History
Available versions
PDF (Published version)Publisher DOI
ISBN
9781424424139Journal title
Proceedings of the 33rd IEEE Conference on Local Computer NetworksConference name
The 33rd IEEE Conference on Local Computer NetworksPagination
6 ppPublisher
IEEECopyright statement
Copyright © 2008 IEEE. The published version is reproduced in accordance with the copyright policy of the publisher. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.Language
engUsage metrics
Categories
No categories selectedKeywords
Licence
Exports
RefWorks
BibTeX
Ref. manager
Endnote
DataCite
NLM
DC