Exploit-based analysis of attack models

Phongphun Kijsanayothin; Rattikorn Hewett

doi:10.1109/NCA.2013.18

Exploit-based analysis of attack models

Phongphun Kijsanayothin, Rattikorn Hewett

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

7 Scopus citations

Abstract

Protecting network-accessible resources from unauthorized use requires understanding of network vulnerability. Building attack models as chains of vulnerability exploits by an attacker can help locate flaws to prevent attacks. This paper presents an approach to automatically analyzing security attack models called exploit-based analysis. By using knowledge about exploitability of network vulnerabilities combined with a Markov computational process commonly used in link analysis, exploit based analysis ranks nodes in the attack model in order of their likelihoods of being compromised. The paper discusses the details of the approach, illustrates its use, and compares results with an existing technique.

Original language	English
Title of host publication	Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013
Pages	183-186
Number of pages	4
DOIs	https://doi.org/10.1109/NCA.2013.18
State	Published - 2013
Event	12th Annual IEEE International Symposium on Network Computing and Applications, NCA 2013 - Cambridge, MA, United States Duration: Aug 22 2013 → Aug 24 2013

Publication series

Name	Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013

Conference

Conference	12th Annual IEEE International Symposium on Network Computing and Applications, NCA 2013
Country/Territory	United States
City	Cambridge, MA
Period	08/22/13 → 08/24/13

Keywords

Attack graphs
network security
network vulnerability
ranking algorithm
security models

Access to Document

10.1109/NCA.2013.18

Cite this

@inproceedings{8e9704d0b3994d03856d8f44d4691be6,

title = "Exploit-based analysis of attack models",

abstract = "Protecting network-accessible resources from unauthorized use requires understanding of network vulnerability. Building attack models as chains of vulnerability exploits by an attacker can help locate flaws to prevent attacks. This paper presents an approach to automatically analyzing security attack models called exploit-based analysis. By using knowledge about exploitability of network vulnerabilities combined with a Markov computational process commonly used in link analysis, exploit based analysis ranks nodes in the attack model in order of their likelihoods of being compromised. The paper discusses the details of the approach, illustrates its use, and compares results with an existing technique.",

keywords = "Attack graphs, network security, network vulnerability, ranking algorithm, security models",

author = "Phongphun Kijsanayothin and Rattikorn Hewett",

year = "2013",

doi = "10.1109/NCA.2013.18",

language = "English",

isbn = "9780768550436",

series = "Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013",

pages = "183--186",

booktitle = "Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013",

note = "12th Annual IEEE International Symposium on Network Computing and Applications, NCA 2013 ; Conference date: 22-08-2013 Through 24-08-2013",

}

Kijsanayothin, P & Hewett, R 2013, Exploit-based analysis of attack models. in Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013., 6623661, Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013, pp. 183-186, 12th Annual IEEE International Symposium on Network Computing and Applications, NCA 2013, Cambridge, MA, United States, 08/22/13. https://doi.org/10.1109/NCA.2013.18

Exploit-based analysis of attack models. / Kijsanayothin, Phongphun; Hewett, Rattikorn.
Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013. 2013. p. 183-186 6623661 (Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Exploit-based analysis of attack models

AU - Kijsanayothin, Phongphun

AU - Hewett, Rattikorn

PY - 2013

Y1 - 2013

N2 - Protecting network-accessible resources from unauthorized use requires understanding of network vulnerability. Building attack models as chains of vulnerability exploits by an attacker can help locate flaws to prevent attacks. This paper presents an approach to automatically analyzing security attack models called exploit-based analysis. By using knowledge about exploitability of network vulnerabilities combined with a Markov computational process commonly used in link analysis, exploit based analysis ranks nodes in the attack model in order of their likelihoods of being compromised. The paper discusses the details of the approach, illustrates its use, and compares results with an existing technique.

AB - Protecting network-accessible resources from unauthorized use requires understanding of network vulnerability. Building attack models as chains of vulnerability exploits by an attacker can help locate flaws to prevent attacks. This paper presents an approach to automatically analyzing security attack models called exploit-based analysis. By using knowledge about exploitability of network vulnerabilities combined with a Markov computational process commonly used in link analysis, exploit based analysis ranks nodes in the attack model in order of their likelihoods of being compromised. The paper discusses the details of the approach, illustrates its use, and compares results with an existing technique.

KW - Attack graphs

KW - network security

KW - network vulnerability

KW - ranking algorithm

KW - security models

UR - http://www.scopus.com/inward/record.url?scp=84889049560&partnerID=8YFLogxK

U2 - 10.1109/NCA.2013.18

DO - 10.1109/NCA.2013.18

M3 - Conference contribution

AN - SCOPUS:84889049560

SN - 9780768550436

T3 - Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013

SP - 183

EP - 186

BT - Proceedings - IEEE 12th International Symposium on Network Computing and Applications, NCA 2013

T2 - 12th Annual IEEE International Symposium on Network Computing and Applications, NCA 2013

Y2 - 22 August 2013 through 24 August 2013

ER -

Exploit-based analysis of attack models

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this