Title :
Network Security Risk Assessment Based on Service Dependency Analysis
Author :
Li, Zhidong ; Yang, Wu ; Wang, Wei ; Man, Dapeng
Author_Institution :
Inf. Security Res. Center, Harbin Eng. Univ., Harbin, China
Abstract :
Utilizing computer aided security risk assessment, administrators can apperceive network security situation quickly and take countermeasures effectively. Most assessment methods disregard the dependencies among services, lack the evaluation against indirect risks, and seldom mention the composition of multiple source risks. Regarding the above problems, an assessment method that based on service dependency analysis is presented, which identifies the dependencies among services from operating system management information and network communication monitoring records, integrates correlative services into the network service architecture, assesses the indirect risks that propagate along dependency chains, and composes the risks that come from multiple vulnerabilities via multiple paths. Experiment indicates that the method can assess the overall risk more precisely, comprehensively and thoroughly.
Keywords :
operating systems (computers); risk management; security of data; computer aided security risk assessment; network communication monitoring records; network security risk assessment; network service architecture; operating system management; service dependency analysis; Complexity theory; Computer architecture; Computers; Databases; Operating systems; Risk management; Security; network security; risk assessment; risk composition; service dependency relationship;
Conference_Titel :
Internet Computing for Science and Engineering (ICICSE), 2010 Fifth International Conference on
Conference_Location :
Heilongjiang
Print_ISBN :
978-1-4244-9954-0
DOI :
10.1109/ICICSE.2010.38
