An improved algorithm for generation of attack graph based on virtual performance node

Yihuan Zhao; Zulin Wang; Xudong Zhang; Jing Zheng

doi:10.1109/MINES.2009.43

An improved algorithm for generation of attack graph based on virtual performance node

Yihuan Zhao^*
, Zulin Wang
, Xudong Zhang
, Jing Zheng

^*Corresponding author for this work

School of Electronic and Information Engineering

Beihang University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

4 Scopus citations

Abstract

A variety of graph-based algorithms have been proposed to generate attack graph automatically, few of which take network performance into consideration and satisfy the purpose of network vulnerability analysis. In this paper, Virtual Performance Node (VPN) is defined and an improved graph-based algorithm is proposed. The performance decrease due to attacker's incursion in the whole network is regarded as the attacker's expectation and VPNs are chosen as the net status. This method makes attack graph have an extra ability to measure the attack effect with network performance loss. The algorithm is compared with other methods in the analysis of an experimental network. The results show that the improved attack graph has the least status and acts well with human cognitive habits, which makes it more useful to analyze network vulnerability.

Original language	English
Title of host publication	1st International Conference on Multimedia Information Networking and Security, MINES 2009
Pages	466-469
Number of pages	4
DOIs	https://doi.org/10.1109/MINES.2009.43
State	Published - 2009
Event	1st International Conference on Multimedia Information Networking and Security, MINES 2009 - Hubei, China Duration: 17 Nov 2009 → 20 Nov 2009

Publication series

Name	1st International Conference on Multimedia Information Networking and Security, MINES 2009
Volume	2

Conference

Conference	1st International Conference on Multimedia Information Networking and Security, MINES 2009
Country/Territory	China
City	Hubei
Period	17/11/09 → 20/11/09

Keywords

Attack effect
Attack graph
Network performance
Network security
Vulnerability analysis

Access to Document

10.1109/MINES.2009.43

Cite this

Zhao, Y., Wang, Z., Zhang, X., & Zheng, J. (2009). An improved algorithm for generation of attack graph based on virtual performance node. In 1st International Conference on Multimedia Information Networking and Security, MINES 2009 (pp. 466-469). Article 5368815 (1st International Conference on Multimedia Information Networking and Security, MINES 2009; Vol. 2). https://doi.org/10.1109/MINES.2009.43

@inproceedings{50e9a554b0bc4179addf1d01a02c5e6b,

title = "An improved algorithm for generation of attack graph based on virtual performance node",

abstract = "A variety of graph-based algorithms have been proposed to generate attack graph automatically, few of which take network performance into consideration and satisfy the purpose of network vulnerability analysis. In this paper, Virtual Performance Node (VPN) is defined and an improved graph-based algorithm is proposed. The performance decrease due to attacker's incursion in the whole network is regarded as the attacker's expectation and VPNs are chosen as the net status. This method makes attack graph have an extra ability to measure the attack effect with network performance loss. The algorithm is compared with other methods in the analysis of an experimental network. The results show that the improved attack graph has the least status and acts well with human cognitive habits, which makes it more useful to analyze network vulnerability.",

keywords = "Attack effect, Attack graph, Network performance, Network security, Vulnerability analysis",

author = "Yihuan Zhao and Zulin Wang and Xudong Zhang and Jing Zheng",

year = "2009",

doi = "10.1109/MINES.2009.43",

language = "英语",

isbn = "9780769538433",

series = "1st International Conference on Multimedia Information Networking and Security, MINES 2009",

pages = "466--469",

booktitle = "1st International Conference on Multimedia Information Networking and Security, MINES 2009",

note = "1st International Conference on Multimedia Information Networking and Security, MINES 2009 ; Conference date: 17-11-2009 Through 20-11-2009",

}

Zhao, Y, Wang, Z, Zhang, X & Zheng, J 2009, An improved algorithm for generation of attack graph based on virtual performance node. in 1st International Conference on Multimedia Information Networking and Security, MINES 2009., 5368815, 1st International Conference on Multimedia Information Networking and Security, MINES 2009, vol. 2, pp. 466-469, 1st International Conference on Multimedia Information Networking and Security, MINES 2009, Hubei, China, 17/11/09. https://doi.org/10.1109/MINES.2009.43

An improved algorithm for generation of attack graph based on virtual performance node. / Zhao, Yihuan; Wang, Zulin; Zhang, Xudong et al.
1st International Conference on Multimedia Information Networking and Security, MINES 2009. 2009. p. 466-469 5368815 (1st International Conference on Multimedia Information Networking and Security, MINES 2009; Vol. 2).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An improved algorithm for generation of attack graph based on virtual performance node

AU - Zhao, Yihuan

AU - Wang, Zulin

AU - Zhang, Xudong

AU - Zheng, Jing

PY - 2009

Y1 - 2009

N2 - A variety of graph-based algorithms have been proposed to generate attack graph automatically, few of which take network performance into consideration and satisfy the purpose of network vulnerability analysis. In this paper, Virtual Performance Node (VPN) is defined and an improved graph-based algorithm is proposed. The performance decrease due to attacker's incursion in the whole network is regarded as the attacker's expectation and VPNs are chosen as the net status. This method makes attack graph have an extra ability to measure the attack effect with network performance loss. The algorithm is compared with other methods in the analysis of an experimental network. The results show that the improved attack graph has the least status and acts well with human cognitive habits, which makes it more useful to analyze network vulnerability.

AB - A variety of graph-based algorithms have been proposed to generate attack graph automatically, few of which take network performance into consideration and satisfy the purpose of network vulnerability analysis. In this paper, Virtual Performance Node (VPN) is defined and an improved graph-based algorithm is proposed. The performance decrease due to attacker's incursion in the whole network is regarded as the attacker's expectation and VPNs are chosen as the net status. This method makes attack graph have an extra ability to measure the attack effect with network performance loss. The algorithm is compared with other methods in the analysis of an experimental network. The results show that the improved attack graph has the least status and acts well with human cognitive habits, which makes it more useful to analyze network vulnerability.

KW - Attack effect

KW - Attack graph

KW - Network performance

KW - Network security

KW - Vulnerability analysis

UR - https://www.scopus.com/pages/publications/77649294533

U2 - 10.1109/MINES.2009.43

DO - 10.1109/MINES.2009.43

M3 - 会议稿件

AN - SCOPUS:77649294533

SN - 9780769538433

T3 - 1st International Conference on Multimedia Information Networking and Security, MINES 2009

SP - 466

EP - 469

BT - 1st International Conference on Multimedia Information Networking and Security, MINES 2009

T2 - 1st International Conference on Multimedia Information Networking and Security, MINES 2009

Y2 - 17 November 2009 through 20 November 2009

ER -

An improved algorithm for generation of attack graph based on virtual performance node

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this