A network security analysis method using vulnerability correlation

Zhi Yong Li; Chao Hai Xie; Ran Tao; Hao Zhang; Na Shi

doi:10.1109/ICNC.2009.368

A network security analysis method using vulnerability correlation

Zhi Yong Li^*, Chao Hai Xie, Ran Tao, Hao Zhang, Na Shi

^*此作品的通讯作者

信息与电子学院

Beijing Institute of Technology

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

2 引用（Scopus）

摘要

Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.

源语言	英语
主期刊名	5th International Conference on Natural Computation, ICNC 2009
页	17-21
页数	5
DOI	https://doi.org/10.1109/ICNC.2009.368
出版状态	已出版 - 2009
活动	5th International Conference on Natural Computation, ICNC 2009 - Tianjian, 中国期限: 14 8月 2009 → 16 8月 2009

出版系列

姓名	5th International Conference on Natural Computation, ICNC 2009
卷	1

会议

会议	5th International Conference on Natural Computation, ICNC 2009
国家/地区	中国
市	Tianjian
时期	14/08/09 → 16/08/09

访问文件

10.1109/ICNC.2009.368

其它文件与链接

链接到 Scopus 的出版物

引用此

Li, Z. Y., Xie, C. H., Tao, R., Zhang, H., & Shi, N. (2009). A network security analysis method using vulnerability correlation. 在 5th International Conference on Natural Computation, ICNC 2009 (页码 17-21). 文章 5363697 (5th International Conference on Natural Computation, ICNC 2009; 卷 1). https://doi.org/10.1109/ICNC.2009.368

@inproceedings{ab144cb7e1a94424a0caec458c714de9,

title = "A network security analysis method using vulnerability correlation",

abstract = "Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.",

keywords = "Attack graph, Network security, Vulnerability correlation, Vulnerability correlation graph",

author = "Li, {Zhi Yong} and Xie, {Chao Hai} and Ran Tao and Hao Zhang and Na Shi",

year = "2009",

doi = "10.1109/ICNC.2009.368",

language = "English",

isbn = "9780769537368",

series = "5th International Conference on Natural Computation, ICNC 2009",

pages = "17--21",

booktitle = "5th International Conference on Natural Computation, ICNC 2009",

note = "5th International Conference on Natural Computation, ICNC 2009 ; Conference date: 14-08-2009 Through 16-08-2009",

}

Li, ZY, Xie, CH, Tao, R, Zhang, H & Shi, N 2009, A network security analysis method using vulnerability correlation. 在 5th International Conference on Natural Computation, ICNC 2009., 5363697, 5th International Conference on Natural Computation, ICNC 2009, 卷 1, 页码 17-21, 5th International Conference on Natural Computation, ICNC 2009, Tianjian, 中国, 14/08/09. https://doi.org/10.1109/ICNC.2009.368

TY - GEN

T1 - A network security analysis method using vulnerability correlation

AU - Li, Zhi Yong

AU - Xie, Chao Hai

AU - Tao, Ran

AU - Zhang, Hao

AU - Shi, Na

PY - 2009

Y1 - 2009

N2 - Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.

AB - Recently in-depth analysis of network security vulnerability must consider attacker exploits not just in isolation, but also in combination. The general approach to this problem is to compute attack graphs using a variety of graphbased algorithms. However, such methods generally suffer the exponential state space problem. Therefore, this paper brings forward two conceptions of vulnerability correlation matrix and vulnerability correlation graph (VCG). An algorithm based on vulnerability correlation matrix was proposed to generate VCGs. An example was given to illustrate the application and effect of the algorithm in network security analysis. Deep analysis proves that VCGs have polynomial complexity of the number of network vulnerabilities and scale well for large networks. Moreover, the example shows that VCGs are a good help to and convenient for network security management.

KW - Attack graph

KW - Network security

KW - Vulnerability correlation

KW - Vulnerability correlation graph

UR - http://www.scopus.com/inward/record.url?scp=77950552252&partnerID=8YFLogxK

U2 - 10.1109/ICNC.2009.368

DO - 10.1109/ICNC.2009.368

M3 - Conference contribution

AN - SCOPUS:77950552252

SN - 9780769537368

T3 - 5th International Conference on Natural Computation, ICNC 2009

SP - 17

EP - 21

BT - 5th International Conference on Natural Computation, ICNC 2009

T2 - 5th International Conference on Natural Computation, ICNC 2009

Y2 - 14 August 2009 through 16 August 2009

ER -

A network security analysis method using vulnerability correlation

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此