Intrusive intention recognition based on attack path graph

Wu Peng; Chang Zhen Hu; Shu Ping Yao

Intrusive intention recognition based on attack path graph

Wu Peng^*, Chang Zhen Hu, Shu Ping Yao

^*Corresponding author for this work

School of Cyberspace Science and Technology

Beijing Institute of Technology

Research output: Contribution to journal › Article › peer-review

5 Citations (Scopus)

Abstract

In order to predict an attacker's high level goals and assess network security situation, an intrusive intention recognition method is presented in this paper. Concept and taxonomy of intrusive intention are introduced at first. Then, to reduce complexity of understanding and analysis, a method of hierarchical attack path graph generation is proposed to recognize intrusive intention. Based on the attack path graph, the algorithms for evaluating quantitatively intention accessibility, reliable probability, attack path prediction and possible minimum attack path are developed. Next, economical and effective protective measures are addressed to block attackers' intention to be achieved, by applying minimum vertex cut set theory to directed graph. Finally several experiments are done to prove the feasibility and validity of this method.

Original language	English
Pages (from-to)	1077-1081
Number of pages	5
Journal	Beijing Ligong Daxue Xuebao/Transaction of Beijing Institute of Technology
Volume	30
Issue number	9
Publication status	Published - Sept 2010

Keywords

Attack path graph
Intrusive intention recognition
Minimum cut set theory

Cite this

Peng, W., Hu, C. Z., & Yao, S. P. (2010). Intrusive intention recognition based on attack path graph. Beijing Ligong Daxue Xuebao/Transaction of Beijing Institute of Technology, 30(9), 1077-1081.

@article{9f4f882739df4960b8f3a8efb91771e8,

title = "Intrusive intention recognition based on attack path graph",

abstract = "In order to predict an attacker's high level goals and assess network security situation, an intrusive intention recognition method is presented in this paper. Concept and taxonomy of intrusive intention are introduced at first. Then, to reduce complexity of understanding and analysis, a method of hierarchical attack path graph generation is proposed to recognize intrusive intention. Based on the attack path graph, the algorithms for evaluating quantitatively intention accessibility, reliable probability, attack path prediction and possible minimum attack path are developed. Next, economical and effective protective measures are addressed to block attackers' intention to be achieved, by applying minimum vertex cut set theory to directed graph. Finally several experiments are done to prove the feasibility and validity of this method.",

keywords = "Attack path graph, Intrusive intention recognition, Minimum cut set theory",

author = "Wu Peng and Hu, {Chang Zhen} and Yao, {Shu Ping}",

year = "2010",

month = sep,

language = "English",

volume = "30",

pages = "1077--1081",

journal = "Beijing Ligong Daxue Xuebao/Transaction of Beijing Institute of Technology",

issn = "1001-0645",

publisher = "Beijing Institute of Technology",

number = "9",

}

TY - JOUR

T1 - Intrusive intention recognition based on attack path graph

AU - Peng, Wu

AU - Hu, Chang Zhen

AU - Yao, Shu Ping

PY - 2010/9

Y1 - 2010/9

N2 - In order to predict an attacker's high level goals and assess network security situation, an intrusive intention recognition method is presented in this paper. Concept and taxonomy of intrusive intention are introduced at first. Then, to reduce complexity of understanding and analysis, a method of hierarchical attack path graph generation is proposed to recognize intrusive intention. Based on the attack path graph, the algorithms for evaluating quantitatively intention accessibility, reliable probability, attack path prediction and possible minimum attack path are developed. Next, economical and effective protective measures are addressed to block attackers' intention to be achieved, by applying minimum vertex cut set theory to directed graph. Finally several experiments are done to prove the feasibility and validity of this method.

AB - In order to predict an attacker's high level goals and assess network security situation, an intrusive intention recognition method is presented in this paper. Concept and taxonomy of intrusive intention are introduced at first. Then, to reduce complexity of understanding and analysis, a method of hierarchical attack path graph generation is proposed to recognize intrusive intention. Based on the attack path graph, the algorithms for evaluating quantitatively intention accessibility, reliable probability, attack path prediction and possible minimum attack path are developed. Next, economical and effective protective measures are addressed to block attackers' intention to be achieved, by applying minimum vertex cut set theory to directed graph. Finally several experiments are done to prove the feasibility and validity of this method.

KW - Attack path graph

KW - Intrusive intention recognition

KW - Minimum cut set theory

UR - http://www.scopus.com/inward/record.url?scp=78149247594&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:78149247594

SN - 1001-0645

VL - 30

SP - 1077

EP - 1081

JO - Beijing Ligong Daxue Xuebao/Transaction of Beijing Institute of Technology

JF - Beijing Ligong Daxue Xuebao/Transaction of Beijing Institute of Technology

IS - 9

ER -

Intrusive intention recognition based on attack path graph

Abstract

Keywords

Other files and links

Fingerprint

Cite this