nach oben

Erschienen in:

2018 | OriginalPaper | Buchkapitel

Network Security Situation Assessment Approach Based on Attack-Defense Stochastic Game Model

verfasst von : Jianyi Liu, Fangyu Weng, Ru Zhang, Yunbiao Guo

Erschienen in: Cloud Computing and Security

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

To analyze the influence of threat propagation on network system and accurately evaluate system security, this paper proposes an approach to improve the awareness of network security, based on Attack-Defense Stochastic Game Model (ADSGM). The variety of network security elements collected by multi-sensors are fused into a standard dataset such as assets, threats and vulnerabilities. For every threat, it builds a threat propagation network and propagation rule. By using the game theory to analyze the network offensive and defensive process, it establishes the ADSGM. The ADSGM can dynamically evaluate network security situation and provide the best reinforcement schema. Experimental results on a specific network indicate that the approach is more precise and more suitable for a real network environment. The reinforcement schema can effectively prevent the propagation of threats and reduce security risks.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Network Attack Prediction Method Based on Threat Intelligence

Nächstes Kapitel Preservation Mechanism of Electronic Record Based on Erasure Code and Multi Copies in Cloud Storage

Xuan, Z.: Survey of network security situation awareness and key technologies. In: Li, S., Jin, Q., Jiang, X., Park, J.J. (eds.) Frontier and Future Development of Information Technology in Medicine and Education. LNEE, vol. 269, pp. 3281–3286. Springer, Dordrecht (2014). https://doi.org/10.1007/978-94-007-7618-0_423CrossRef

Chen, X., Zheng, Q., et al.: Study on evaluation for security situation of networked systems. J. Xi’an Jiao Tong Univ. 38, 404–408 (2004)

Trusted Computing Group: TCG Specification architecture overview specification revision 1.2. [EB/OL], 15 April 2011

Trusted Computing Group: TCG Specification Architecture Overview, pp. 5–40. Trusted Computing Group, Oregon (2007)

Xie, L., Wang, Y.: New method of network security situation awareness. J. Beijing Univ. Posts Telecommun. 31–35 (2014)

Qu, Z.Y., Li, Y.Y.: A network security situation evaluation method based on D-S evidence theory. In: International Conference on Environmental Science and Information Application Technology, pp. 496–499. IEEE (2010)

Liu, S.C., Liu, Y.: Network security risk assessment method based on HMM and attack graph model. In: IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/distributed Computing, pp. 517–522. IEEE (2016)

Hu, H., Zhang, H., Liu, Y., et al.: Quantitative method for network security situation based on attack prediction. Secur. Commun. Netw. 1–19 (2017)

Dang, D.: Assessment of information security risk by support vector machine. J. Huazhong Univ. Sci. Technol. 38(3), 46–49 (2010)

10.

Liang, X., Xiao, Y.: Game theory for network security. IEEE Commun. Surv. Tutor. 15(1), 472–486 (2013)CrossRef

11.

Chen, Y., Wu, X., et al.: Network security evaluation of stochastic game and network based on entropy. J. Beijing Univ. Posts Telecommun. 1, 92–96 (2014)

12.

Wang, Y., et al.: Modeling and security analysis of enterprise network using attack–defense stochastic game Petri nets. Secur. Commun. Netw. 6(1), 89–99 (2013)CrossRef

13.

Shen, D., Chen, G., Haynes, L., et al.: A Markov game theoretic data fusion approach for cyber situational awareness. In: Proceedings of SPIE - The International Society for Optical Engineering, vol. 6571, no. 48, pp. 65710F–65710F-12 (2007)

14.

Ryutov, T., Orosz, M., Blythe, J., von Winterfeldt, D.: A game theoretic framework for modeling adversarial cyber security game among attackers, defenders, and users. In: Foresti, S. (ed.) STM 2015. LNCS, vol. 9331, pp. 274–282. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-24858-5_18CrossRef

15.

Shandilya, V., Shiva, S.: A Network Security Game Model, pp. 159–161 (2015)

16.

Liu, X., Yuan, Y.: A novel dynamic method in distributed network attack-defense game. Math. Probl. Eng. 1–7 (2015)

17.

Zhang, Y., Tan, X., Cui, X.: Network security situation awareness approach based on Markov game model. J. Softw. 22, 495–508 (2011)CrossRef

18.

GB/T 20984-2007: Information security technology, information security risk assessment specification

19.

Feng, N., Wang, H.J., Li, M.: A security risk analysis model for information systems: causal relationships of risk factors and vulnerability propagation analysis. Inf. Sci. 256, 57–73 (2014)CrossRef

20.

Zhang, Y., Fang, B.X., Chi, Y., Yun, X.: Research on network node correlation in network risk assessment. J. Comput. Res. 30, 234–240 (2007)

Titel: Network Security Situation Assessment Approach Based on Attack-Defense Stochastic Game Model
verfasst von: Jianyi Liu
Fangyu Weng
Ru Zhang
Yunbiao Guo
Verlag: Springer International Publishing
Buch: Cloud Computing and Security
Print ISBN: 978-3-030-00011-0

Electronic ISBN: 978-3-030-00012-7

Copyright-Jahr: 2018
DOI: https://doi.org/10.1007/978-3-030-00012-7_15

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"