A hybrid ranking approach to estimate vulnerability for dynamic attacks

A hybrid ranking approach to estimate vulnerability for dynamic attacks

0.00 Avg rating0 Votes
Article ID: iaor201111823
Volume: 62
Issue: 12
Start Page Number: 4308
End Page Number: 4321
Publication Date: Dec 2011
Journal: Computers and Mathematics with Applications
Authors: , , ,
Keywords: security, economics
Abstract:

To enhance security in dynamic networks, it is important to evaluate the vulnerabilities and offer economic and practical patching strategy since vulnerability is the major driving force for attacks. In this paper, a hybrid ranking approach is presented to estimate vulnerabilities under the dynamic scenarios, which is a combination of low‐level rating for vulnerability instances and high‐level evaluation for the security level of the network system. Moreover, a novel quantitative model, an adapted attack graph, is also proposed to escaping isolated scoring, which takes the dynamic and logic relations among exploits into account, and significantly benefits to vulnerability analysis. To validate applicability and performance of our approach, a hybrid ranking case is implemented as experimental platform. The ranking results show that our approach differentiates the influential levels among vulnerabilities under dynamic attacking scenarios and economically enhances the security of network system.

Reviews

Required fields are marked *. Your email address will not be published.