Title :
VEA-bility Security Metric: A Network Security Analysis Tool
Author :
Tupper, Melanie ; Zincir-Heywood, A. Nur
Author_Institution :
Dalhousie Univ., Halifax, NS
Abstract :
In this work, we propose a novel quantitative security metric, VEA-bility, which measures the desirability of different network configurations. An administrator can then use the VEA-bility scores of different configurations to configure a secure network. Based on our findings, we conclude that the VEA-bility can be used to accurately estimate the comparative desirability of a specific network configuration. This information can then be used to explore alternate possible configurations and allows an administrator to select one among the given options. These tools are important to network administrators as they strive to provide secure, yet functional, network configurations.
Keywords :
computer networks; security of data; VEA-bility security metric; comparative desirability; network administrators; network configurations; network security analysis tool; Arm; Availability; Computer networks; Data security; Databases; Intrusion detection; Software tools; Attackability; Exploitability; Vulnerability; attack graphs; exploit; network security; quantitative measure; security metric;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.138
