Hierarchical Real-time Risk Assessment Based on Risk Propagation
In this paper a hierarchical real-time risk assessment approach based on risk propagation is presented. The approach real-time calculates risks of services, hosts and network caused by attack processes. Risk index and risk status are used to quantify the risk situation. These two concepts are involved with three aspects of attacks: severity, certainty and successful possibility, and with the importance of the assets. Algorithms to calculate the risk index and risk status are proposed, and implement is briefly introduced. Risk status decay is also proposed, which is important to adaptive response.
security in digital systems real-time risk assessment risk propagation intrusion detection intrusion response
Wan Li Shengfeng Tian
Information Engineering Department,Beijing Information Technology College, Beijing, China School of Computer and Information Technology,Beijing Jiaotong University,Beijing, China
国际会议
成都
英文
1379-1383
2010-12-17(万方平台首次上网日期,不代表论文的发表时间)