• DocumentCode
    3252720
  • Title

    A new approach for network vulnerability analysis

  • Author

    Vu, Hai L. ; Khaw, Kenneth K. ; Chen, TY ; Kuo, Fei-Ching

  • Author_Institution
    Centre for Adv. Internet Archit., Swinburne Univ. of Technol., Melbourne, VIC
  • fYear
    2008
  • fDate
    14-17 Oct. 2008
  • Firstpage
    200
  • Lastpage
    206
  • Abstract
    We propose in this paper a novel approach to analyze network vulnerability and to obtain a quantitative value representing the level of security achieved in an arbitrary network. Unlike previous graph-based algorithms that generate attack trees (or graphs) to cover all possible sequences of vulnerabilities and therefore are not scalable, our method utilizes the attack graphpsilas principles, but directly analyzes and produces the desired security measure for a network without building the actual attack graph. The proposed approach relies on a unique evaluation of vulnerability metric defined in this paper and is demonstrated through an example of a network that provides voice over IP services.
  • Keywords
    Internet telephony; telecommunication network management; telecommunication security; attack graph principle; network vulnerability analysis; voice over IP service; Algorithm design and analysis; Australia; Computer networks; IP networks; Information analysis; Internet telephony; Protection; Scalability; State-space methods; Tree graphs;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Local Computer Networks, 2008. LCN 2008. 33rd IEEE Conference on
  • Conference_Location
    Montreal, Que
  • Print_ISBN
    978-1-4244-2412-2
  • Electronic_ISBN
    978-1-4244-2413-9
  • Type

    conf

  • DOI
    10.1109/LCN.2008.4664170
  • Filename
    4664170
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3252720