An Improved Algorithm for Generation of Attack Graph Based on Virtual Performance Node
A variety of graph-based algorithms have been proposed to generate attack graph automatically, few of which take network performance into consideration and satisfy the purpose of network vulnerability analysis. In this paper, Virtual Performance Node (VPN) is defined and an improved graph-based algorithm is proposed. The performance decrease due to attackers incursion in the whole network is regarded as the attackers expectation and VPNs are chosen as the net status. This method makes attack graph have an extra ability to measure the attack effect with network performance loss. The algorithm is compared with other methods in the analysis of an experimental network. The results show that the improved attack graph has the least status and acts well with human cognitive habits, which makes it more useful to analyze network vulnerability.
attack graph network security attack effect vulnerability analysis network performance
Yihuan Zhao Zulin Wang Xudong Zhang Jing Zheng
School of Electronics and Information Engineering Beijing University of Aeronautics and Astronautics 100191 Beijing China
国际会议
武汉
英文
1148-1151
2009-11-18(万方平台首次上网日期,不代表论文的发表时间)