Risk Assessment of Information System using the Shell Theory and Attack Graph
In order to improve the accuracy of risk assessment of corporate networks, the paper introduces the concept of network shell into the field of security risk assessment. After analyzing the actual needs of corporate networks, we give the risk assessment model of network shell, then based on this model we analyze the application of network shell and give the algorithm to repair the network shell through the attack graph. After that, a calculation method of the integrated value of network shell is given. Finally, an example is given to verify the validity of assessment model.
vulnerability network shell attack graph risk assessment
Xiaorong Cheng Zhenshan Zhang
School of Computer Science and Technology North China Electric Power University Baoding,China
国际会议
成都
英文
537-541
2010-07-07(万方平台首次上网日期,不代表论文的发表时间)