A Genetic Algorithm Approach for the Most Likely Attack Path Problem

Author

Alhomidi, M. ; Reed, M.

Author_Institution

Sch. of Comput. Sci. & Electron. Eng., Univ. of Essex, Colchester, UK

fYear

2013

fDate

2-6 Sept. 2013

Firstpage

360

Lastpage

366

Abstract

Security attack path analysis has become attractive as a security risk assessment technique that represents vulnerabilities in a network. This paper presents a genetic algorithm approach to find the most likely attack paths in attack graphs. We provide an effective approach to network administrators by showing the paths and steps that attackers will most probably exploit to achieve a specific target. The use of a genetic algorithm is particularly appropriate as it offers a straight-forward approach and, most importantly, a range of solutions. This latter point differs from other approaches which concentrate on a singly most likely path and may ignore other important attack vectors. The paper shows how a genetic algorithm can be developed such that feasible individuals are maintained at each stage by selecting certain attack graph vertices to be the crossover and mutation sites.

Keywords

genetic algorithms; graph theory; risk management; security of data; attack graph vertices; attack vectors; crossover sites; genetic algorithm approach; most likely attack path problem; mutation sites; network vulnerabilities; security attack path analysis; security risk assessment technique; Encoding; Genetic algorithms; Measurement; Probability; Security; Sociology; Statistics; Attack graph; attack path; genetic algorithm; most likely paths;

fLanguage

English

Publisher

ieee

Conference_Titel

Availability, Reliability and Security (ARES), 2013 Eighth International Conference on

Conference_Location

Regensburg

Type

conf

DOI

10.1109/ARES.2013.48

Filename

6657264