Network security situation quantitative evaluation based on the classification of attacks in attack-defense confrontation environment

Authors:
Yao Shuping;Gu Yingyan
Affiliations:
Laboratory of Computer Network Defense Technology, Beijing Institute of Technology, Beijing;Jiangsu Automation Research Institute of CSIC, Lianyungang, Jiangsu, China
Venue:
CCDC'09 Proceedings of the 21st annual international conference on Chinese control and decision conference
Year:
2009

Citing 3
Cited 0

Experimenting with Quantitative Evaluation Tools for Monitoring Operational Security

IEEE Transactions on Software Engineering
Intrusion detection systems and multisensor data fusion

Communications of the ACM
Impact Analysis of Faults and Attacks in Large-Scale Networks

IEEE Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

In order to remedy defects of the current network security evaluation systems, a novel evaluation algorithm, called quantitative network security situation evaluation based on the classification of attacks, is presented. Using this method, the traditional risk assessment is combined with network environment factors such as the network running status, asset security characteristic etc., and several quantitative indexes are extracted based on the analysis of factors which can affect the LAN's security situation. Then, evaluations are done based on the classification of attacks. Experiment results show that the novel method can provide situation information which is more objective and detailed so the security administrator can understand the LAN's security situation more clearly.