摘要
Network security methods lack effective metrics to measure attack risks and defense capabilities in dynamic networks, especially since they have high dimensionality and are difficult to analyze since there are many indicators. This paper presents a method to quantify network attack and defense capabilities. Clustering and principal component analyses are used to reduce the dimensionality and allocate weights to the indicator groups. These indexes are embedded in differential manifolds that change with time with the network risk evaluated based on the attack risks and defense capabilities to quantify the network security effectiveness. The CIC2017 dataset is used as an example to show that this method can indicate the attach and defense risks for dynamic networks. The results show that this method can provide a dynamic method for network security measurements.
| 投稿的翻译标题 | Metrics for network attack and defense effectiveness based on differential manifolds |
|---|---|
| 源语言 | 繁体中文 |
| 页(从-至) | 380-385 |
| 页数 | 6 |
| 期刊 | Qinghua Daxue Xuebao/Journal of Tsinghua University |
| 卷 | 60 |
| 期 | 5 |
| DOI | |
| 出版状态 | 已出版 - 1 5月 2020 |
关键词
- Attack and defense effectiveness
- Differential manifold
- Indicator dimension reduction
- Network security metrics