Aggregating vulnerability metrics in enterprise networks using attack graphs

Journal of Computer Security

Volumn 21, Issue 4, 2013, Pages 561-597

  Homer, John ^a   Zhang, Su ^b   Ou, Xinming ^b   Schmidt, David ^b   Du, Yanhui ^c   Rajagopalan, S Raj ^d   Singhal, Anoop ^e  

^a ABILENE CHRISTIAN UNIVERSITY   (United States)

^b KANSAS STATE UNIVERSITY   (United States)

^c PEOPLE S PUBLIC SECURITY UNIVERSITY OF CHINA   (China)

^d HONEYWELL   (United States)

^e NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY   (United States)

Author keywords

Attack graphs; Enterprise network security management; Risk assessment; Vulnerability metrics

Indexed keywords

ATTACK GRAPH; EMPIRICAL EVALUATIONS; ENTERPRISE NETWORKS; NETWORK CONFIGURATION; PROBABILISTIC GRAPHICAL MODELS; PROBABILISTIC REASONING; SOFTWARE VULNERABILITIES; VULNERABILITY METRICS;

INDUSTRIAL MANAGEMENT; INDUSTRY; RISK ASSESSMENT; SEMANTICS;

NETWORK SECURITY;

EID: 84890017132     PISSN: 0926227X     EISSN: None     Source Type: Journal    
DOI: 10.3233/JCS-130475     Document Type: Article

References (48)

1. E. Al-Shaer, L. Khan and M. Salim Ahmed, A comprehensive objective network security metric framework for proactive security configuration, in: ACM Cyber Security and Information Intelligence Research Workshop, 2008.
2. P. Ammann, D. Wijesekera and S. Kaushik, Scalable, graph-based network vulnerability analysis, in: Proceedings of 9th ACM Conference on Computer and Communications Security, Washington, DC, November 2002.
3. Z. Anwar, R. Shankesi and R.H. Campbell, Automatic security assessment of critical cyberinfrastructures, in: Proceedings of the 38th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), July 2008.
4. D. Balzarotti, M. Monga and S. Sicari, Assessing the risk of using vulnerable components, in: Proceedings of the 2nd ACM Workshop on Quality of Protection, 2005.
5. S. Bellovin, On the brittleness of software and the infeasibility of security metrics, IEEE Security & Privacy 4(4) (2006), 96 pp.
6. M. Dacier, Y. Deswarte and M. Kaâniche, Models and tools for quantitative assessment of operational security, in: IFIP SEC, 1996.
7. J. Dawkins and J. Hale, A systematic approach to multi-stage network attack analysis, in: Proceedings of Second IEEE International Information Assurance Workshop, April 2004, pp. 48-56.
8. R. Dewri, N. Poolsappasit, I. Ray and D. Whitley, Optimal security hardening using multi-objective optimization on attack tree models of networks, in: 14th ACM Conference on Computer and Communications Security (CCS), 2007.
9. M. Frigault and L.Wang, Measuring network security using Bayesian network-based attack graphs, in: Proceedings of the 3rd IEEE InternationalWorkshop on Security, Trust, and Privacy for Software Applications (STPSA'08), 2008.
10. M. Frigault, L. Wang, A. Singhal and S. Jajodia, Measuring network security using dynamic Bayesian network, in: Proceedings of the 4th ACM Workshop on Quality of Protection, 2008.
11. D. Geer Jr., K. Soo Hoo and A. Jaquith, Information security: Why the future belongs to the quants, IEEE Security & Privacy 1(4) (2003), 24-32.
12. J. Homer and X. Ou, SAT-solving approaches to context-Aware enterprise network security management, IEEE JSAC Special Issue on Network Infrastructure Configuration, 2009.
13. N. Idika and B. Bhargava, Extending attack graph-based security metrics and aggregating their application, IEEE Transactions on Dependable and Secure Computing 9(1) (2012), 75-85.
14. K. Ingols, M. Chu, R. Lippmann, S. Webster and S. Boyer, Modeling modern network attacks and countermeasures using attack graphs, in: 25th Annual Computer Security Applications Conference (ACSAC), 2009.
15. K. Ingols, R. Lippmann and K. Piwowarski, Practical attack graph generation for network defense, in: 22nd Annual Computer Security Applications Conference (ACSAC), Miami Beach, FL, December 2006.
16. S. Jajodia and S. Noel, Advanced cyber attack modeling analysis and visualization, Technical Report AFRL-RI-RS-TR-2010-078, Air Force Research Laboratory, March 2010.
17. S. Jajodia, S. Noel and B. O'Berry, Topological analysis of network attack vulnerability, in: Managing Cyber Threats: Issues, Approaches and Challanges, V. Kumar, J. Srivastava and A. Lazarevic, eds, Kluwer Academic Publisher, 2003, Chapter 5.
18. F.V. Jensen and T.D. Nielsen, Bayesian Networks and Decision Graphs, 2nd edn, Springer, 2007.
19. W. Li, R.B. Vaughn and Y.S. Dandass, An approach to model network exploitations using exploitation graphs, Simulation 82(8) (2006), 523-541.
20. R. Lippmann and K.W. Ingols, An annotated review of past papers on attack graphs, Technical report, MIT Lincoln Laboratory, March 2005.
21. R.P. Lippmann, K.W. Ingols, C. Scott, K. Piwowarski, K. Kratkiewicz, M. Artz and R. Cunningham, Evaluating and strengthening enterprise network security using attack graphs, Technical Report ESC-TR-2005-064, MIT Lincoln Laboratory, October 2005.
22. P. Manadhata, J. Wing, M. Flynn and M. McQueen, Measuring the attack surfaces of two FTP daemons, in: Proceedings of the 2nd ACM Workshop on Quality of Protection, 2006.
23. P.K. Manadhata and J.M.Wing, An attack surface metric, IEEE Transactions on Software Engineering, June 2010.
24. J. McHugh, Quality of protection: Measuring the unmeasurable?, in: Proceedings of the 2nd ACM Workshop on Quality of Protection (QoP), Alexandria, VA, USA, 2006.
25. J. McHugh and J. Tippett (eds), Workshop on Information-Security-System Rating and Ranking (WISSRR), Applied Computer Security Associates, May 2001.
26. V. Mehta, C. Bartzis, H. Zhu, E. Clarke and J. Wing, Ranking attack graphs, in: Proceedings of Recent Advances in Intrusion Detection (RAID), September 2006.
27. P. Mell, K. Scarfone and S. Romanosky, A Complete Guide to the Common Vulnerability Scoring System Version 2.0, Forum of Incident Response and Security Teams (FIRST), June 2007.
28. S. Noel, S. Jajodia, L. Wang and A. Singhal, Measuring security risk of networks using attack graphs, International Journal of Next - Generation Computing 1(1) (2010), 135-147.
29. R. Ortalo, Y. Deswarte and M. Kaâniche, Experimenting with quantitative evaluation tools for monitoring operational security, IEEE Transactions on Software Engineering 25(5) (1999), 633-650.
30. X. Ou, A logic-programming approach to network security analysis, PhD thesis, Princeton University, 2005.
31. X. Ou, W.F. Boyer and M.A. McQueen, A scalable approach to attack graph generation, in: 13th ACM Conference on Computer and Communications Security (CCS), 2006, pp. 336-345.
32. X. Ou, S. Govindavajhala and A.W. Appel, MulVAL: A logic-based network security analyzer, in: 14th USENIX Security Symposium, 2005.
33. J. Pamula, S. Jajodia, P. Ammann and V. Swarup, A weakest-Adversary security metric for network configuration security analysis, in: Proceedings of the 2nd ACM Workshop on Quality of Protection, 2006.
34. J. Pearl, Probabilistic Reasoning in Intelligent Systems: Networks of Plausible Inference, Morgan Kaufman, 1988.
35. C. Phillips and L.P. Swiler, A graph-based system for network-vulnerability analysis, in: NSPW'98: Proceedings of the 1998 Workshop on New Security Paradigms, ACM Press, 1998, pp. 71-79.
36. S. Quinn, D. Waltermire, C. Johnson, K. Scarfone and J. Banghart, The Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.0, The National Institute of Standards and Technology Special Publication 800-126, 2009.
37. D. Saha, Extending logical attack graphs for efficient vulnerability analysis, in: Proceedings of the 15th ACM Conference on Computer and Communications Security (CCS), 2008.
38. R. Sawilla and C. Burrell, Course of action recommendations for practical network defence, Technical Report TM-2009-130, Defence Research and Development Canada, 2009.
39. R. Sawilla and X. Ou, Identifying critical attack assets in dependency attack graphs, in: 13th European Symposium on Research in Computer Security (ESORICS), Malaga, Spain, October 2008.
40. O. Sheyner, Scenario Graphs and Attack Graphs, PhD thesis, Carnegie Mellon, April 2004.
41. O. Sheyner, J. Haines, S. Jha, R. Lippmann and J.M. Wing, Automated generation and analysis of attack graphs, in: Proceedings of the 2002 IEEE Symposium on Security and Privacy, 2002, pp. 254-265.
42. L.P. Swiler, C. Phillips, D. Ellis and S. Chakerian, Computer-Attack graph generation tool, in: DARPA Information Survivability Conference and Exposition (DISCEX II'01), Vol. 2, June 2001.
43. R. Tarjan, Depth-first search and linear graph algorithms, SIAM Journal on Computing 1(2) (1972), 146-160.
44. T. Tidwell, R. Larson, K. Fitch and J. Hale, Modeling internet attacks, in: Proceedings of the 2001 IEEE Workshop on Information Assurance and Security, West Point, NY, June 2001.
45. L. Wang, T. Islam, T. Long, A. Singhal and S. Jajodia, An attack graph-based probabilistic security metric, in: Proceedings of the 22nd Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSEC'08), 2008.
46. L. Wang, S. Noel and S. Jajodia, Minimum-cost network hardening using attack graphs, Computer Communications 29 (2006), 3812-3824.
47. L. Wang, A. Singhal and S. Jajodia, Measuring network security using attack graphs, in: Third Workshop on Quality of Protection (QoP), 2007.
48. L. Wang, A. Singhal and S. Jajodia, Measuring the overall security of network configurations using attack graphs, in: Proceedings of 21th IFIP WG 11.3 Working Conference on Data and Applications Security (DBSEC'07), 2007.