Probability and Attack Graph models in Contextual Risk Scoring System

Abstract

The interest of attackers is expanding in response to the on-growing enthusiasm for rapid development, so seeking ways to quantify and manage the risks has become a priority. However, in the current context, there is no consistent and effective strategy for evaluating computer network security. Therefore, we propose a comprehensive software solution that collects, processes, and evaluates data from devices inside a network, in order to identify the key security issues and measure the level of risk using a probability-based model. The final result is represented by the network score, which is a measure of the risk to which it is exposed.