A framework for security quantification of networked machines

2010 Second International Conference on COMmunication Systems and NETworks (COMSNETS 2010) Pub Date : 2010-01-05 DOI:10.1109/COMSNETS.2010.5431978

Hui Wang, Suman Roy, A. Das, S. Paul

{"title":"A framework for security quantification of networked machines","authors":"Hui Wang, Suman Roy, A. Das, S. Paul","doi":"10.1109/COMSNETS.2010.5431978","DOIUrl":null,"url":null,"abstract":"Widespread application of computer network has evoked a lot of interest for cyber attackers to target these systems. In addition to cryptography based protective techniques such as authentication and authorization, several defense measures, like Intrusion Detection and Tolerance, and tools are employed to protect networks thereby, making security a critical issue. Therefore, the need for defining, structuring, and quantifying security arises as a necessary first step towards measuring the effectiveness of security related deployments. This work proposes a structured approach to define and analyze security related metrics for intrusion tolerant systems for each individual host in the network and compose them in a meaningful way to provide an overall security quantification for a network. The dynamics of each machine against a particular vulnerability is modeled as a (hidden) Markov process to capture uncertainties in attacker's action and system response. Based on these stochastic analysis, security metrics of each machine are calculated which are subsequently used in the final computation of the security metrics of the network.1","PeriodicalId":369006,"journal":{"name":"2010 Second International Conference on COMmunication Systems and NETworks (COMSNETS 2010)","volume":"31 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-01-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 Second International Conference on COMmunication Systems and NETworks (COMSNETS 2010)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COMSNETS.2010.5431978","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

Widespread application of computer network has evoked a lot of interest for cyber attackers to target these systems. In addition to cryptography based protective techniques such as authentication and authorization, several defense measures, like Intrusion Detection and Tolerance, and tools are employed to protect networks thereby, making security a critical issue. Therefore, the need for defining, structuring, and quantifying security arises as a necessary first step towards measuring the effectiveness of security related deployments. This work proposes a structured approach to define and analyze security related metrics for intrusion tolerant systems for each individual host in the network and compose them in a meaningful way to provide an overall security quantification for a network. The dynamics of each machine against a particular vulnerability is modeled as a (hidden) Markov process to capture uncertainties in attacker's action and system response. Based on these stochastic analysis, security metrics of each machine are calculated which are subsequently used in the final computation of the security metrics of the network.1

查看原文本刊更多论文

网络机器安全量化的框架

计算机网络的广泛应用引起了网络攻击者对这些系统的极大兴趣。除了基于加密的保护技术(如身份验证和授权)之外，还采用了入侵检测和容忍等几种防御措施和工具来保护网络，从而使安全性成为一个关键问题。因此，定义、构建和量化安全性的需求是度量安全相关部署的有效性的必要的第一步。这项工作提出了一种结构化的方法来定义和分析网络中每个单独主机的入侵容忍系统的安全相关指标，并以一种有意义的方式将它们组合起来，为网络提供整体安全量化。每台机器针对特定漏洞的动态建模为(隐藏的)马尔可夫过程，以捕获攻击者行为和系统响应中的不确定性。基于这些随机分析，计算出每台机器的安全度量，这些度量随后用于网络安全度量的最终计算

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2010 Second International Conference on COMmunication Systems and NETworks (COMSNETS 2010)

自引率

0.00%

发文量