A Goal-Oriented Approach for Modeling and Analyzing Attack Graph

2010 International Conference on Information Science and Applications Pub Date : 2010-04-21 DOI:10.1109/ICISA.2010.5480282

Xuejiao Liu, Chengfang Fang, Debao Xiao, Hui Xu

{"title":"A Goal-Oriented Approach for Modeling and Analyzing Attack Graph","authors":"Xuejiao Liu, Chengfang Fang, Debao Xiao, Hui Xu","doi":"10.1109/ICISA.2010.5480282","DOIUrl":null,"url":null,"abstract":"As network components are often highly interdependent and interconnected,an adversary outside can take advantage of multiple vulnerabilities in unexpected ways, incrementally penetrate a network and compromise critical systems. Attack graph is commonly used for analyzing network security level for its capability in reflecting all network vulnerabilities and their inter relationships. However, attack graph assumes an over pessimistic situation by giving the attacker unlimited power of exploiting each chain of vulnerabilities in the network, leading the complexity of analyzing to grow exponentially with the size of network. Therefore, the weakest paths suggested by such analysis could be inaccurate for adversary with limited computation power. In this paper, we investigate how attackers are planning to exploit vulnerabilities towards their targets and present the idea of a goal-oriented analysis of attack graph to address this problem. We give algorithms for analyzing network vulnerabilities, predicting attackers's potential target, and giving suggestions on patching the weakest nodes based on attackers' targets.","PeriodicalId":313762,"journal":{"name":"2010 International Conference on Information Science and Applications","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-04-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 International Conference on Information Science and Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICISA.2010.5480282","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

As network components are often highly interdependent and interconnected,an adversary outside can take advantage of multiple vulnerabilities in unexpected ways, incrementally penetrate a network and compromise critical systems. Attack graph is commonly used for analyzing network security level for its capability in reflecting all network vulnerabilities and their inter relationships. However, attack graph assumes an over pessimistic situation by giving the attacker unlimited power of exploiting each chain of vulnerabilities in the network, leading the complexity of analyzing to grow exponentially with the size of network. Therefore, the weakest paths suggested by such analysis could be inaccurate for adversary with limited computation power. In this paper, we investigate how attackers are planning to exploit vulnerabilities towards their targets and present the idea of a goal-oriented analysis of attack graph to address this problem. We give algorithms for analyzing network vulnerabilities, predicting attackers's potential target, and giving suggestions on patching the weakest nodes based on attackers' targets.

查看原文本刊更多论文

面向目标的攻击图建模与分析方法

由于网络组件通常是高度相互依赖和相互连接的，外部的攻击者可以以意想不到的方式利用多个漏洞，逐步渗透到网络中并危及关键系统。攻击图能够反映所有网络漏洞及其相互关系，是分析网络安全级别的常用工具。然而，攻击图假设了一种过于悲观的情况，给了攻击者无限的利用网络中每一条漏洞链的能力，导致分析的复杂性随着网络规模呈指数级增长。因此，这种分析建议的最弱路径对于计算能力有限的对手来说可能是不准确的。在本文中，我们研究了攻击者如何计划利用针对其目标的漏洞，并提出了面向目标的攻击图分析的想法来解决这个问题。给出了分析网络漏洞的算法，预测攻击者的潜在目标，并根据攻击者的目标给出最弱节点的补丁建议。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2010 International Conference on Information Science and Applications

自引率

0.00%

发文量