Security Modelling and Analysis of Dynamic Enterprise Networks
| Autor: | Mengmeng Ge, Simon Enoch Yusuf, Huy Kang Kim, Kim Paul, Jin B. Hong, Dong Seong Kim |
|---|---|
| Rok vydání: | 2016 |
| Předmět: |
021110 strategic
defence & security studies business.industry Computer science 0211 other engineering and technologies Vulnerability Covert channel 020206 networking & telecommunications 02 engineering and technology Computer security model Internet security Computer security computer.software_genre Security information and event management Security service Software security assurance Network Access Control Server 0202 electrical engineering electronic engineering information engineering Concrete security business computer Vulnerability (computing) |
| Zdroj: | CIT |
| DOI: | 10.1109/cit.2016.88 |
| Popis: | Dynamic networks can be characterised by many factors such as changes (e.g., vulnerability change, update of applications and services, topology changes). It is of vital importance to assess the security of such dynamic networks in order to improve the security of them. One way to assess the security is to use a graphical security model. However, the existing graphical security models (e.g., attack graphs and attack trees) have only considered static networks (i.e. the network does not change). It is also unclear how the existing cyber security metrics (e.g., attack cost, shortest attack path) change when the network configuration changes over time. To address this problem, we propose (i) to develop a novel graphical security model named Temporal-Hierarchical Attack Representation Model (T-HARM) to capture network changes and (ii) investigate the effect of network change on the existing cyber security metrics based on the proposed security model. We show how the existing security metrics change when the status of vulnerabilities changes. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|