Title :
A logic-based approach to network security risk assessment
Author :
Ji, Yi ; Wen, Danyan ; Wang, Haiquan ; Xia, Chunhe
Author_Institution :
Sch. of Comput. Sci. & Eng., Beihang Univ., Beijing, China
Abstract :
An important problem in network security risk assessment is to uncover network threats due to current software vulnerabilities and misconfigurations. This paper proposes a logic-programming approach to conduct this risk assessment automatically. We use Datalog to specify network security property states and attack rules. The threat analysis could be conducted by a logic-programming engine that can evaluate Datalog efficiently (such as XSB). We analyze trace proofs produced by the reasoning engine, and get threat information of evaluated network system. After identifying the threats, we apply game theory to compute threat risks. A simple network attack has been simulated to illuminate the appliance of the new approach. Results on how the approach has been able to help the system administrator understand the threat risks of attacks and take countermeasures accordingly are also analyzed.
Keywords :
DATALOG; logic programming; risk management; security of data; Datalog; logic-programming approach; network security risk assessment; network system; simple network attack; system administrator; threat analysis; Computer networks; Computer science; Computer security; Data security; Electronic mail; Game theory; Information security; Risk analysis; Risk management; Search engines; Datalog; logic-programming; risk assessment; threat identification;
Conference_Titel :
Computing, Communication, Control, and Management, 2009. CCCM 2009. ISECS International Colloquium on
Conference_Location :
Sanya
Print_ISBN :
978-1-4244-4247-8
DOI :
10.1109/CCCM.2009.5267887
