CVSS-based Multi-Factor Dynamic Risk Assessment Model for Network System

2020 IEEE 10th International Conference on Electronics Information and Emergency Communication (ICEIEC) Pub Date : 2020-07-01 DOI:10.1109/ICEIEC49280.2020.9152340

Tingting Wang, Qiujian Lv, Bo Hu, Degang Sun

{"title":"CVSS-based Multi-Factor Dynamic Risk Assessment Model for Network System","authors":"Tingting Wang, Qiujian Lv, Bo Hu, Degang Sun","doi":"10.1109/ICEIEC49280.2020.9152340","DOIUrl":null,"url":null,"abstract":"The risk assessment model of network systems is designed to provide quantifiable evidence to assist security administrators in choosing appropriate defend methods. Most models measure the overall risk by combining CVSS base scores of system vulnerabilities. However, they merely consider the impact of dynamic risk factors including attacker capability and evolutions of vulnerabilities. To address this issue, we propose a CVSS based Multi-Factor dynamic risk assessment Model, CMFM. It uses attack paths to model an attacker’s capability, which is thus used to estimate the successful probabilities about vulnerability exploitations. Besides, we exploit both static and time-variant factors of vulnerabilities to produce a better estimation result. The final system risk assessment can then be accessed via a Bayesian attack graph. We evaluate the proposed model in two scenarios, all of which demonstrate that CMFM outperforms the state-of-the-art models in assessing the dynamic risk status of network systems.","PeriodicalId":352285,"journal":{"name":"2020 IEEE 10th International Conference on Electronics Information and Emergency Communication (ICEIEC)","volume":"266 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE 10th International Conference on Electronics Information and Emergency Communication (ICEIEC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICEIEC49280.2020.9152340","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

The risk assessment model of network systems is designed to provide quantifiable evidence to assist security administrators in choosing appropriate defend methods. Most models measure the overall risk by combining CVSS base scores of system vulnerabilities. However, they merely consider the impact of dynamic risk factors including attacker capability and evolutions of vulnerabilities. To address this issue, we propose a CVSS based Multi-Factor dynamic risk assessment Model, CMFM. It uses attack paths to model an attacker’s capability, which is thus used to estimate the successful probabilities about vulnerability exploitations. Besides, we exploit both static and time-variant factors of vulnerabilities to produce a better estimation result. The final system risk assessment can then be accessed via a Bayesian attack graph. We evaluate the proposed model in two scenarios, all of which demonstrate that CMFM outperforms the state-of-the-art models in assessing the dynamic risk status of network systems.

查看原文本刊更多论文

基于cvss的网络系统多因素动态风险评估模型

网络系统的风险评估模型旨在提供可量化的证据，以帮助安全管理员选择适当的防御方法。大多数模型通过组合CVSS系统漏洞的基本分数来度量总体风险。然而，他们仅仅考虑了动态风险因素的影响，包括攻击者的能力和漏洞的演变。为了解决这一问题，我们提出了一种基于CVSS的多因素动态风险评估模型CMFM。它使用攻击路径来模拟攻击者的能力，从而用于估计漏洞利用的成功概率。此外，我们同时利用了漏洞的静态因子和时变因子，以获得更好的估计结果。然后可以通过贝叶斯攻击图访问最终的系统风险评估。我们在两种情况下评估了所提出的模型，所有这些都表明CMFM在评估网络系统的动态风险状态方面优于最先进的模型。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 IEEE 10th International Conference on Electronics Information and Emergency Communication (ICEIEC)

自引率

0.00%

发文量