39

•Download as DOCX, PDF•

0 likes•21 views

This document discusses extending and aggregating attack graph-based security metrics to more accurately assess network security. It proposes a new suite of complimentary metrics to overcome the shortcomings of existing metrics like shortest path, number of paths, and mean path length. Specifically, it suggests an algorithm to combine these metrics to better determine which of two attack graphs corresponds to the most secure network configuration in many cases.

Education

Impulse Technologies
Beacons U to World of technology
044-42133143, 98401 03301,9841091117 ieeeprojects@yahoo.com www.impulse.net.in
Extending Attack Graph-Based Security Metrics & Aggregating
Their App.
Abstract—
The attack graph is an abstraction that reveals the ways an attacker can
leverage vulnerabilities in a network to violate a security policy. When used with
attack graph-based security metrics, the attack graph may be used to quantitatively
assess security-relevant aspects of a network. The Shortest Path metric, the
Number of Paths metric, and the Mean of Path Lengths metric are three attack
graph-based security metrics that can extract security-relevant information.
However, one's usage of these metrics can lead to misleading results. The Shortest
Path metric and the Mean of Path Lengths metric fail to adequately account for the
number of ways an attacker may violate a security policy. The Number of Paths
metric fails to adequately account for the attack effort associated with the attack
paths. To overcome these shortcomings, we propose a complimentary suite of
attack graph-based security metrics and specify an algorithm for combining the
usage of these metrics. We present simulated results that suggest that our approach
reaches a conclusion about which of two attack graphs correspond to a network
that is most secure in many instances.

Your Own Ideas or Any project from any company can be Implemented
at Better price (All Projects can be done in Java or DotNet whichever the student wants)
1

What's hot

Threat Intelligence + Secuirity Monitoring

Talha Riaz

Machine learning scientist

Ertugrul Akbas

Practical Security Architecture Analysis

Phil Huggins FBCS CITP

From MITRE ATT&CKcon Power Hour October 2020 By Matan Hart, Co-Founder & CEO Cymptom @machosec Adversary emulation is commonly used to validate security controls and is considered one of the most popular use-cases for the ATT&CK framework. However, emulating adversary TTPs on production environments is often very limited in testing scope and frequency, and such practice may cause unwanted business disruption. In this talk from the MITRE ATT&CKcon Power Hour session on October 9, 2020, Hart presents a different approach to testing controls against ATT&CK. He demonstrates how it is possible to provide data-based methods to evaluate the exploitability of ATT&CK techniques by gathering information from the network, endpoint, and services; this unique approach does not emulate any sort of malicious action, thus reducing the potential of causing business disruption to the minimum. Hart also outlines a new open-source guideline based on ATT&CK mitigations, that security teams can use to assess their security posture non-intrusively and at scale.

Transforming Adversary Emulation Into a Data Analysis Question

MITRE - ATT&CKcon

Automated incident response

Siemplify

VIKING cluster meeting 1

fcleary

Introduction to Network security

mohanad alobaidey

Pen testing and how does it help strengthen cybersecurity

TestingXperts

Threat modelling

Rajeev Venkata

( ** Cyber Security Training: https://www.edureka.co/cybersecurity-certification-training ** ) This Edureka PPT on "Penetration Testing" will help you understand all about penetration testing, its methodologies, and tools. Below is the list of topics covered in this session: What is Penetration Testing? Phases of Penetration Testing Penetration Testing Types Penetration Testing Tools How to perform Penetration Testing on Kali Linux? Cyber Security Playlist: https://bit.ly/2N2jlNN Cyber Security Blog Series: https://bit.ly/2AuULkP Instagram: https://www.instagram.com/edureka_lea... Facebook: https://www.facebook.com/edurekaIN/ Twitter: https://twitter.com/edurekain LinkedIn: https://www.linkedin.com/company/edureka

Penetration Testing Tutorial | Penetration Testing Tools | Cyber Security Tra...

Edureka!

The potential of SIEM technology

vijay1926

Ethical hacking

Shubham Garg

Ethical hacking

amrutharam

Strata San Jose 2016 - Reduce False Positives in Security

Ram Shankar Siva Kumar

Security Analysis and Data Visualization

Oluseyi Akindeinde

Ethical hacking

Being Uniq Sonu

This presentation pointed out cyber attack detection and prevention of Cyber Physical System. The Chi square detector and Fuzzy logic based attack classifier (FLAC) were used to identify distributed denial of service and False data injection attacks. The fuzzy attributes for selecting the mentioned attacks are activity profiling, average packet rate, change point detection algorithm, cusum algorithm, unexpired session of users, injected incomplete information, reuse of session key. An example scenario has been created using OpNET Simulator. Simulation results depict that the use of Chi-square detector and FLAC are able to detect the mentioned cyber physical attacks with high accuracy. Compared to existing Fuzzy logic based attack detector, the proposed model outperforms the traditional distributed denial of service and False data detector.

Attack detection and prevention in the cyber

Jahangirnagar University

Released by Olu Akindeinde under GNU Free Documentation license: http://old.nabble.com/Attack-Simulation-and-Threat-Modeling-book-to27540377.html#a27540377 Intro: Attack Simulation and Threat Modeling is a book that explores the abundant resources available in advanced security data collection, classification, processing and mining. It attempts to give insight into a number of alternative methods of security and attack analytics that leverage methodologies adopted from various other disciplines in extracting valuable data to support security research work and chart a course for enterprise security decision making. Synopsis Threat Vectors and Attack Signatures Attack Virtualization and Behavioural analysis Security Event Correlation and Pattern Recognition Exploratory Security Analytics and Threat Hypothesis Machine Learning Algorithms It is released under the GNU FDL v1.3 License.

Attack Simulation And Threat Modeling -Olu Akindeinde

Bipin Upadhyay

What's hot (18)

Threat Intelligence + Secuirity Monitoring

Machine learning scientist

Practical Security Architecture Analysis

Transforming Adversary Emulation Into a Data Analysis Question

Automated incident response

VIKING cluster meeting 1

Introduction to Network security

Pen testing and how does it help strengthen cybersecurity

Threat modelling

Penetration Testing Tutorial | Penetration Testing Tools | Cyber Security Tra...

The potential of SIEM technology

Ethical hacking

Strata San Jose 2016 - Reduce False Positives in Security

Security Analysis and Data Visualization

Ethical hacking

Attack detection and prevention in the cyber

Attack Simulation And Threat Modeling -Olu Akindeinde

Predictive cyber security

csandit

PREDICTIVE CYBER SECURITY ANALYTICS FRAMEWORK: A NONHOMOGENOUS MARKOV MODEL F...

cscpconf

Security metrics serve as a powerful tool for organizations to understand the effectiveness of protecting computer networks. However majority of these measurement techniques don’t adequately help corporations to make informed risk management decisions. In this paper we present a stochastic security framework for obtaining quantitative measures of security by taking into account the dynamic attributes associated with vulnerabilities that can change over time. Our model is novel as existing research in attack graph analysis do not consider the temporal aspects associated with the vulnerabilities, such as the availability of exploits and patches which can affect the overall network security based on how the vulnerabilities are interconnected and leveraged to compromise the system. In order to have a more realistic representation of how the security state of the network would vary over time, a nonhomogeneous model is developed which incorporates a time dependent covariate, namely the vulnerability age. The daily transition-probability matrices are estimated using Frei's Vulnerability Lifecycle model. We also leverage the trusted CVSS metric domain to analyze how the total exploitability and impact measures evolve over a time period for a given network.

A predictive framework for cyber security analytics using attack graphs

IJCNCJournal

Attack graphs are models that offer significant cap abilities to analyse security in network systems. A n attack graph allows the representation of vulnerabi lities, exploits and conditions for each attack in a single unifying model. This paper proposes a methodology to explore the graph using a genetic algorithm (GA) . Each attack path is considered as an independent at tack scenario from the source of attack to the targ et. Many such paths form the individuals in the evoluti onary GA solution. The population-based strategy of a GA provides a natural way of exploring a large numb er of possible attack paths to find the paths that are most important. Thus unlike many other optimisation solutions a range of solutions can be presented to a user of the methodology.

Attack graph based risk assessment and optimisation approach

IJNSA Journal

IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology

Secure intrusion detection and countermeasure selection in virtual system usi...

eSAT Publishing House

Implementation of Secured Network Based Intrusion Detection System Using SVM ...

IRJET Journal

Implementing a cybersecurity project can offer numerous advantages for organizations in today's digitally connected world. Here are some key benefits: Protection against Cyber Threats: The primary goal of cybersecurity projects is to safeguard an organization's digital assets from various cyber threats such as malware, ransomware, phishing attacks, and more. This protection is crucial for maintaining the integrity, confidentiality, and availability of sensitive information. Data Privacy Compliance: Many industries have specific regulations and compliance requirements regarding the protection of sensitive data. Implementing cybersecurity measures helps organizations adhere to these regulations, avoiding legal consequences and potential financial penalties. Business Continuity: Cybersecurity projects often include strategies for disaster recovery and business continuity planning. In the event of a cyberattack or data breach, having a robust cybersecurity infrastructure in place can minimize downtime and ensure that critical business operations continue without significant disruption. Risk Management: Cybersecurity projects help organizations identify, assess, and manage potential risks associated with their digital assets. This proactive approach allows businesses to make informed decisions about risk mitigation and prioritize resources effectively. Customer Trust and Reputation: A strong cybersecurity posture can enhance customer trust and protect the reputation of an organization. Customers are more likely to engage with businesses that prioritize the security of their information, leading to increased brand loyalty. Intellectual Property Protection: For many organizations, intellectual property (IP) is a valuable asset. Cybersecurity measures help protect intellectual property from theft or unauthorized access, ensuring that companies can maintain a competitive edge in the market. Employee Awareness and Training: Cybersecurity projects often include employee training programs to raise awareness about cybersecurity threats and best practices. Well-informed employees are a crucial line of defense against social engineering attacks and other cyber threats. Cost Savings: While implementing cybersecurity measures involves an initial investment, it can result in long-term cost savings. The financial impact of a data breach or cyberattack, including potential legal fees, reputation damage, and loss of business, can far exceed the cost of preventive cybersecurity measures. Cyber Insurance Benefits: Having a robust cybersecurity infrastructure in place may make an organization more eligible for favorable terms and rates on cyber insurance policies, providing an additional layer of financial protection. Adaptability to Emerging Threats: Cybersecurity projects are dynamic and adaptive, allowing organizations to stay ahead of evolving cyber threats.

Titles with Abstracts_2023-2024_Cyber Security.pdf

info751436

Protecting information systems is a difficult and long-term task. The size and traffic intensity of computer networks are diverse and no one protection solution is universal for all cases. A certain solution protects well in the campus network, but it is unlikely to protect well in the service provider's network. A key component of a cyber defence system is a network attack detector. This component needs to be designed to have a good way to scale detection capabilities with network size and traffic intensity beyond the size and intensity of a campus network. From this point of view, this paper aims to build a network attack detection method suitable for the scale of large and high-traffic networks based on machine learning models using clustering techniques and our proposed detection technique. The detection technique is different from outlier detection commonly used in clustering-based anomaly detection applications. The method was evaluated in cases using different feature extraction methods and different clustering algorithms. Experimental results on the NSL-KDD data set are positive with a detection accuracy of over 97%.

A LIGHTWEIGHT METHOD FOR DETECTING CYBER ATTACKS IN HIGH-TRAFFIC LARGE NETWOR...

IJCNCJournal

A Lightweight Method for Detecting Cyber Attacks in High-traffic Large Networ...

IJCNCJournal

call for papers, research paper publishing, where to publish research paper, ...

International Journal of Engineering Inventions www.ijeijournal.com

The emerging mobile technology has brought revolutionized changes in the computer era. One such technology of networking is Mobile Ad hoc Networks (MANETS), where the mobility and infrastructure less of the nodes takes predominant roles. These features make MANETS more vulnerable to attacks. As the research continues several aspects can be explored in this area. At the very first it can be the problem of how to make the cross layer detection of attacks more efficient and work well. Since every layer in the network deals with different type of attacks, a possible viewpoint to those attack scenarios can be presented so that it can be extended in the later part. It becomes necessary to figure out the security solution architecture if there are different detection results generated by different layers. Secondly, there should be a measure of the network metrics to show increased performance. The paper presents such a defensive mechanism cross layered architecture which strives to identify and correct misbehaviour in MANETS especially with respect to routing layer. The evaluation of the proposed solution is also given with results obtained to show the performance of the network.

A DEFENSIVE MECHANISM CROSS LAYER ARCHITECTURE FOR MANETS TO IDENTIFY AND COR...

IJNSA Journal

Only Abstract

guesta67d4a

The overwhelming threat may be a challenge to general security system. Fundamentally diverse alert and threat techniques are been researched in order to reduce deceptive warnings. Threat Detection Systems generates huge amount of alerts which becomes challenging to deal with them and prepare solution. The detection System checks inbound and outbound network activities and finds an suspicious pattern that indicate an ongoing steps for attack. Large amount of alert may contain false alarm therefore need of alert analysis mechanisms to offer high level information of seriousness of threat, how dangerous device are and which device admin has to pay more attention. To solve this query we would make use of time and space based alert analysis technique that provides a solution in form of attack graph and its evaluation that provides severity of attack to administrator.

NSAS: NETWORK SECURITY AWARENESS SYSTEM

International Journal of Technical Research & Application

Internet attacks are continuously increasing in the last years, in terms of scale and complexity, challenging the existing defense solutions with new complications and making them almost ineffective against multi-stage attacks, in particular the intrusion detection systems which fail to identify such complex attacks. Attack graph is a modeling technique used to visualize the different steps an attacker might select to achieve his end game, based on existing vulnerabilities and weaknesses in the system. This paper studies the application of attack graphs in intrusion detection and prevention systems (IDS/IPS) in order to better identify complex attacks based on predefined models, configurations, and alerts. As a “proof of concept”, a tool is developed which interfaces with the well-known SNORT [1] intrusion detection system and matches the alerts with an attack graph generated using the NESSUS [2] vulnerability scanner (maintained up-to-date using the National Vulnerability Database (NVD) [3]) and the MULVAL [4] attack graph generation library. The tool allows to keep track with the attacker activities along the different stages of the attack graph.

Application of Attack Graphs in Intrusion Detection Systems: An Implementation

CSCJournals

Cst 630 Extraordinary Success/newtonhelp.com

amaranthbeg113

For more course tutorials visit www.newtonhelp.com Project 1 Step 1: Conduct a Security Analysis Baseline In the first step of the project, you will conduct a security analysis baseline of the IT systems, which will include a data-flow diagram of connections and endpoints, and all types of access points, including wireless. The baseline report will be part of the overall security assessment report (SAR). You will get your information from a data-flow diagram and report from the Microsoft Threat Modeling Tool 2016. The scope should include network IT security for the whole organization. Click the following to view the data-flow diagram: [diagram and report]

Cst 630 Education is Power/newtonhelp.com

amaranthbeg73

Cst 630 Motivated Minds/newtonhelp.com

amaranthbeg53

IRJET- 3 Juncture based Issuer Driven Pull Out System using Distributed Servers

IRJET Journal

With the introduction of high-speed internet access, the demand for security and dependable networks has grown. In recent years, network attacks have gotten more complex and intense, making security a vital component of organizational information systems. Network intrusion detection systems (NIDS) have become an essential detection technology to protect data integrity and system availability against such attacks. NIDS is one of the most well-known areas of machine learning software in the security field, with machine learning algorithms constantly being developed to improve performance. This research focuses on detecting abnormalities in societal infiltration using the hyperparameters optimization XGBoost (HO-XGB) algorithm with the Communications Security Establishment-The Canadian Institute for Cybersecurity-Intrusion Detection System2018 (CSE-CICIDS2018) dataset to get the best potential results. When compared to typical machine learning methods published in the literature, HO-XGB outperforms them. The study shows that XGBoost outperforms other detection algorithms. We refined the HO-XGB model's hyperparameters, which included learning_rate, subsample, max_leaves, max_depth, gamma, colsample_bytree, min_child_weight, n_estimators, max_depth, and reg_alpha. The experimental findings reveal that HO-XGB1 outperforms multiple parameter settings for intrusion detection, effectively optimizing XGBoost's hyperparameters.

Hyperparameters optimization XGBoost for network intrusion detection using CS...

IAESIJAI

Security issues often neglected until coding step in software development process, and changing in this step leads to maximize time and cost consuming depending on the size of the project. Applying security on design phase can fix vulnerabilities of the software earlier in the project and minimize the time and cost of the software by identifying security flaws earlier in the software life cycle. This work concerns with discussing security metrics for object oriented class design, and implementing these metrics from Enterprise Architect class diagram using a proposed CASE tool.

Conducting Security Metrics for Object-Oriented Class Design

IJCSIS Research Publications

Similar to 39 (20)

Predictive cyber security

PREDICTIVE CYBER SECURITY ANALYTICS FRAMEWORK: A NONHOMOGENOUS MARKOV MODEL F...

A predictive framework for cyber security analytics using attack graphs

Attack graph based risk assessment and optimisation approach

Secure intrusion detection and countermeasure selection in virtual system usi...

Implementation of Secured Network Based Intrusion Detection System Using SVM ...

Titles with Abstracts_2023-2024_Cyber Security.pdf

A LIGHTWEIGHT METHOD FOR DETECTING CYBER ATTACKS IN HIGH-TRAFFIC LARGE NETWOR...

A Lightweight Method for Detecting Cyber Attacks in High-traffic Large Networ...

call for papers, research paper publishing, where to publish research paper, ...

A DEFENSIVE MECHANISM CROSS LAYER ARCHITECTURE FOR MANETS TO IDENTIFY AND COR...

Only Abstract

NSAS: NETWORK SECURITY AWARENESS SYSTEM

Application of Attack Graphs in Intrusion Detection Systems: An Implementation

Cst 630 Extraordinary Success/newtonhelp.com

Cst 630 Education is Power/newtonhelp.com

Cst 630 Motivated Minds/newtonhelp.com

IRJET- 3 Juncture based Issuer Driven Pull Out System using Distributed Servers

Hyperparameters optimization XGBoost for network intrusion detection using CS...

Conducting Security Metrics for Object-Oriented Class Design

Recently uploaded

Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi Welcome to VIP Call Girl In Delhi Hello! Delhi Call Girls is one of the most popular cities in India. Girls who call in Delhi frequently Advertise their services in small promgons in magazines, as well as on the Internet but We do not act as a direct-promoter. We will do everything we can to make sure that you're safe to the max to the best of our abilities and making sure of our ability and ensuring that you're obtained to the best of our abilities and making sure that you get what you want. Sexuality of our females is recognized by our Business proposals. Top-of-the-line, fully-featured Delhi girl call number and we offer To be aware of it is a major reason in deciding to use our services to ensure that our customers realize the worth of their lives swiftly and in a pleasant manner by engaging with web series performers for a cost of 10000.Here you are able to be Relax knowing that personal information is stored in the business proposals, giving an appearance of like you're as if you are a full affirmation. Call Girls Service Now Delhi +91-9899900591 *********** N.M.************* 01/04/2024 ▬█⓿▀█▀ 𝐈𝐍𝐃𝐄𝐏𝐄𝐍𝐃𝐄𝐍𝐓 CALL 𝐆𝐈𝐑𝐋 𝐕𝐈𝐏 𝐄𝐒𝐂𝐎𝐑𝐓 SERVICE ✅ ❣️ ⭐➡️HOT & SEXY MODELS // COLLEGE GIRLS AVAILABLE FOR COMPLETE ENJOYMENT WITH HIGH PROFILE INDIAN MODEL AVAILABLE HOTEL & HOME ★ SAFE AND SECURE HIGH CLASS SERVICE AFFORDABLE RATE ★ SATISFACTION,UNLIMITED ENJOYMENT. ★ All Meetings are confidential and no information is provided to any one at any cost. ★ EXCLUSIVE PROFILes Are Safe and Consensual with Most Limits Respected ★ Service Available In: - HOME & HOTEL Star Hotel Service .In Call & Out call SeRvIcEs : ★ A-Level (star escort) ★ Strip-tease ★ BBBJ (Bareback Blowjob)Receive advanced sexual techniques in different mode make their life more pleasurable. ★ Spending time in hotel rooms ★ BJ (Blowjob Without a Condom) ★ Completion (Oral to completion) ★ Covered (Covered blowjob Without condom SAFE AND SECURE

Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi

kauryashika82

This PowerPoint helps students to consider the concept of infinity.

christianmathematics

Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...

EduSkills OECD

Class 11th Physics NEET formula sheet pdf

AyushMahapatra5

Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes

Celine George

Explore the world of IT certification with CompTIA. Discover how the CompTIA Security+ Book SY0-701 can elevate your cybersecurity expertise and open doors to new career opportunities. This PDF provides essential insights into the CompTIA Security+ certification, guiding you through exam preparation and showcasing the benefits of becoming CompTIA-certified. Download now to embark on your journey to IT excellence with CompTIA.

ComPTIA Overview | Comptia Security+ Book SY0-701

bronxfugly43

Python Notes for mca i year students osmania university.docx

Ramakrishna Reddy Bijjam

Unit-IV- Pharma. Marketing Channels.pptx

VishalSingh1417

How to Give a Domain for a Field in Odoo 17

Celine George

ICT role in 21st century education and it's challenges.

MaryamAhmad92

Sociology 101 Demonstration of Learning Exhibit

jbellavia9

The basics of sentences session 2pptx copy.pptx

heathfieldcps1

ICT Role in 21st Century Education & its Challenges.pptx

AreebaZafar22

Advanced Views - Calendar View in Odoo 17

Celine George

In Bachelor of Pharmacy course, Class- 1st year, sem-II Subject EVS having topic of Energy Resources under the point Natural Resources. Following Presentation contain total information about the energy resources like Introduction of energy resources, Non-renewable, Renewable Energy resources with examples as well as deep explanations of coal, oil, petroleum, solar energy , wind energy , Conservation of Natural resources etc. Students having deep knowledge about energy resources after studying this presentation.

Energy Resources. ( B. Pharmacy, 1st Year, Sem-II) Natural Resources

Shubhangi Sonawane

PROCESS RECORDING FORMAT.docx

PoojaSen20

Mehran University Newsletter Vol-X, Issue-I, 2024

Mehran University of Engineering & Technology, Jamshoro

TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...

Nguyen Thanh Tu Collection

Food Chain and Food Web (Ecosystem) EVS, B. Pharmacy 1st Year, Sem-II

Shubhangi Sonawane

Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...

christianmathematics

Recently uploaded (20)

Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi

This PowerPoint helps students to consider the concept of infinity.

Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...

Class 11th Physics NEET formula sheet pdf

Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes

ComPTIA Overview | Comptia Security+ Book SY0-701

Python Notes for mca i year students osmania university.docx

Unit-IV- Pharma. Marketing Channels.pptx

How to Give a Domain for a Field in Odoo 17

ICT role in 21st century education and it's challenges.

Sociology 101 Demonstration of Learning Exhibit

The basics of sentences session 2pptx copy.pptx

ICT Role in 21st Century Education & its Challenges.pptx

Advanced Views - Calendar View in Odoo 17

Energy Resources. ( B. Pharmacy, 1st Year, Sem-II) Natural Resources

PROCESS RECORDING FORMAT.docx

Mehran University Newsletter Vol-X, Issue-I, 2024

TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...

Food Chain and Food Web (Ecosystem) EVS, B. Pharmacy 1st Year, Sem-II

Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...

39

1. Impulse Technologies Beacons U to World of technology 044-42133143, 98401 03301,9841091117 ieeeprojects@yahoo.com www.impulse.net.in Extending Attack Graph-Based Security Metrics & Aggregating Their App. Abstract— The attack graph is an abstraction that reveals the ways an attacker can leverage vulnerabilities in a network to violate a security policy. When used with attack graph-based security metrics, the attack graph may be used to quantitatively assess security-relevant aspects of a network. The Shortest Path metric, the Number of Paths metric, and the Mean of Path Lengths metric are three attack graph-based security metrics that can extract security-relevant information. However, one's usage of these metrics can lead to misleading results. The Shortest Path metric and the Mean of Path Lengths metric fail to adequately account for the number of ways an attacker may violate a security policy. The Number of Paths metric fails to adequately account for the attack effort associated with the attack paths. To overcome these shortcomings, we propose a complimentary suite of attack graph-based security metrics and specify an algorithm for combining the usage of these metrics. We present simulated results that suggest that our approach reaches a conclusion about which of two attack graphs correspond to a network that is most secure in many instances. Your Own Ideas or Any project from any company can be Implemented at Better price (All Projects can be done in Java or DotNet whichever the student wants) 1

39

Recommended

Recommended

More Related Content

What's hot

What's hot (18)

Similar to 39

Similar to 39 (20)

More from ieeeprojectsvadapalani

More from ieeeprojectsvadapalani (20)

Recently uploaded

Recently uploaded (20)

39