@inproceedings{8252238cad3d42569d29a78db250c62e,
title = "A quantitative method for evaluating network security based on attack graph",
abstract = "With the rapid development of network, network security issues become increasingly important. It is a tough challenge to evaluate the network security due to the increasing vulnerabilities. In this paper, we propose a quantitative method for evaluating network security based on attack graph. We quantify the importance of nodes and the maximum reachable probability of nodes, and construct a security evaluation function to calculate the security risk score. Our approach focuses on the attacker{\textquoteright}s view and considers the most important factors that may affect the network security. The parameters we use are easily to be acquired in any network. Thus, the assessment score gotten through the evaluation function can comprehensively reflect the security level. According to the security risk value, security professionals can take appropriate countermeasures to harden the network. Experimental results prove that this model solves the security evaluation problem efficiently.",
keywords = "Attack graph, Network security, Risk judgement, Vulnerability",
author = "Yukun Zheng and Kun Lv and Changzhen Hu",
note = "Publisher Copyright: {\textcopyright} Springer International Publishing AG 2017.; 11th International Conference on Network and System Security, NSS 2017 ; Conference date: 21-08-2017 Through 23-08-2017",
year = "2017",
doi = "10.1007/978-3-319-64701-2_25",
language = "English",
isbn = "9783319647005",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "349--358",
editor = "Zheng Yan and Refik Molva and Wojciech Mazurczyk and Raimo Kantola",
booktitle = "Network and System Security - 11th International Conference, NSS 2017, Proceedings",
address = "Germany",
}