A network security analysis method using vulnerability correlation

Zhi Yong Li; Chao Hai Xie; Ran Tao; Hao Zhang; Na Shi

doi:10.1109/ICNC.2009.368

A network security analysis method using vulnerability correlation

Zhi Yong Li^*, Chao Hai Xie, Ran Tao, Hao Zhang, Na Shi

^*Corresponding author for this work

School of Information and Electronics

Beijing Institute of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

2 Citations (Scopus)

Abstract

Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.

Original language	English
Title of host publication	5th International Conference on Natural Computation, ICNC 2009
Pages	17-21
Number of pages	5
DOIs	https://doi.org/10.1109/ICNC.2009.368
Publication status	Published - 2009
Event	5th International Conference on Natural Computation, ICNC 2009 - Tianjian, China Duration: 14 Aug 2009 → 16 Aug 2009

Publication series

Name	5th International Conference on Natural Computation, ICNC 2009
Volume	1

Conference

Conference	5th International Conference on Natural Computation, ICNC 2009
Country/Territory	China
City	Tianjian
Period	14/08/09 → 16/08/09

Keywords

Attack graph
Network security
Vulnerability correlation
Vulnerability correlation graph

Access to Document

10.1109/ICNC.2009.368

Cite this

@inproceedings{ab144cb7e1a94424a0caec458c714de9,

title = "A network security analysis method using vulnerability correlation",

abstract = "Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.",

keywords = "Attack graph, Network security, Vulnerability correlation, Vulnerability correlation graph",

author = "Li, {Zhi Yong} and Xie, {Chao Hai} and Ran Tao and Hao Zhang and Na Shi",

year = "2009",

doi = "10.1109/ICNC.2009.368",

language = "English",

isbn = "9780769537368",

series = "5th International Conference on Natural Computation, ICNC 2009",

pages = "17--21",

booktitle = "5th International Conference on Natural Computation, ICNC 2009",

note = "5th International Conference on Natural Computation, ICNC 2009 ; Conference date: 14-08-2009 Through 16-08-2009",

}

Li, ZY, Xie, CH, Tao, R, Zhang, H & Shi, N 2009, A network security analysis method using vulnerability correlation. in 5th International Conference on Natural Computation, ICNC 2009., 5363697, 5th International Conference on Natural Computation, ICNC 2009, vol. 1, pp. 17-21, 5th International Conference on Natural Computation, ICNC 2009, Tianjian, China, 14/08/09. https://doi.org/10.1109/ICNC.2009.368

A network security analysis method using vulnerability correlation. / Li, Zhi Yong; Xie, Chao Hai; Tao, Ran et al.
5th International Conference on Natural Computation, ICNC 2009. 2009. p. 17-21 5363697 (5th International Conference on Natural Computation, ICNC 2009; Vol. 1).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A network security analysis method using vulnerability correlation

AU - Li, Zhi Yong

AU - Xie, Chao Hai

AU - Tao, Ran

AU - Zhang, Hao

AU - Shi, Na

PY - 2009

Y1 - 2009

N2 - Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.

AB - Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.

KW - Attack graph

KW - Network security

KW - Vulnerability correlation

KW - Vulnerability correlation graph

UR - http://www.scopus.com/inward/record.url?scp=77950552252&partnerID=8YFLogxK

U2 - 10.1109/ICNC.2009.368

DO - 10.1109/ICNC.2009.368

M3 - Conference contribution

AN - SCOPUS:77950552252

SN - 9780769537368

T3 - 5th International Conference on Natural Computation, ICNC 2009

SP - 17

EP - 21

BT - 5th International Conference on Natural Computation, ICNC 2009

T2 - 5th International Conference on Natural Computation, ICNC 2009

Y2 - 14 August 2009 through 16 August 2009

ER -

A network security analysis method using vulnerability correlation

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this