MulVAL: A logic-based network security analyzer ∗

14th USENIX Security Symposium

Volumn , Issue , 2005, Pages 113-128

  Ou, Xinming ^a   Govindavajhala, Sudhakar ^a   Appel, Andrew W ^a  

^a PRINCETON UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER OPERATING SYSTEMS; MODELING LANGUAGES; SPECIFICATIONS;

MULTIPLE NETWORKS; REASONING ENGINE; REMEDIATION MEASURES; SECURITY ANALYZERS; SOFTWARE VULNERABILITIES; SYSTEM ADMINISTRATORS; VULNERABILITY ANALYSIS; VULNERABILITY DATABASE;

NETWORK SECURITY;

EID: 85076884574     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (27)

1. Paul Ammann, Duminda Wijesekera, and Saket Kaushik. Scalable, graph-based network vulnerability analysis. In Proceedings of 9th ACM Conference on Computer and Communications Security, Washington, DC, November 2002.
2. R. Baldwin. Rule based analysis of computer security. Technical Report TR-401, MIT LCS Lab, 1988.
3. Yair Bartal, Alain J. Mayer, Kobbi Nissim, and Avishai Wool. Firmato: A novel firewall management toolkit. In IEEE Symposium on Security and Privacy, pages 17–31, 1999.
4. James Burns, Aileen Cheng, Proveen Gurung, David Martin, Jr., S. Raj Rajagopalan, Prasad Rao, and Alathurai V. Surendran. Automatic management of network security policy. In DARPA Information Survivability Conference and Exposition (DISCEX II’01), volume 2, Anaheim, California, June 2001.
5. Frdric Cuppens and Alexandre Mige. Alert correlation in a cooperative intrusion detection framework. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, page 202. IEEE Computer Society, 2002.
6. Evgeny Dantsin, Thomas Eiter, Georg Gottlob, and Andrei Voronkov. Complexity and expressive power of logic programming. ACM Comput. Surv., 33(3):374–425, 2001.
7. John DeTreville. Binder, a logic-based security language. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, page 105. IEEE Computer Society, 2002.
8. Daniel Farmer and Eugene H. Spafford. The cops security checker system. Technical Report CSD-TR-993, Purdue University, September 1991.
9. William L. Fithen, Shawn V. Hernan, Paul F. O’Rourke, and David A. Shinberg. Formal modeling of vulnerabilities. Bell Labs technical journal, 8(4):173–186, 2004.
10. Allen Van Gelder, Kenneth Ross, and John S. Schlipf. Unfounded sets and well-founded semantics for general logic programs. In PODS’88: Proceedings of the seventh ACM SIGACT-SIGMODSIGART symposium on Principles of database systems, pages 221–230, New York, NY, USA, 1988. ACM Press.
11. Joshua D. Guttman. Filtering postures: Local enforcement for global policies. In Proc. IEEE Symp. on Security and Privacy, pages 120–129, Oakland, CA, 1997.
12. Susan Hinrichs. Policy-based management: Bridging the gap. In 15th Annual Computer Security Applications Conference, Phoenix, Arizona, Dec 1999.
13. Sushil Jajodia, Steven Noel, and Brian O’Berry. Topological analysis of network attack vulnerabity. In V. Kumar, J. Srivastava, and A. Lazarevic, editors, Managing Cyber Threats: Issues, Approaches and Challanges, chapter 5. Kluwer Academic Publisher, 2003.
14. Samuel T. King, Z. Morley Mao, Dominic G. Lucchetti, and Peter M. Chen. Enriching intrusion alerts through multi-host causality. In The 12th Annual Network and Distributed System Security Symposium (NDSS 05), Feb. 2005.
15. Ninghui Li, Benjamin N. Grosof, and Joan Feigenbaum. Delegation Logic: A logic-based approach to distributed authorization. ACM Transaction on Information and System Security (TISSEC), February 2003. To appear.
16. Peng Ning, Yun Cui, and Douglas S. Reeves. Constructing attack scenarios through correlation of intrusion alerts. In CCS’02: Proceedings of the 9th ACM conference on Computer and communications security, pages 245–254. ACM Press, 2002.
17. Steven Noel, Sushil Jajodia, Brian O’Berry, and Michael Jacobs. Efficient minimum-cost network hardening via exploit dependency graphs. In 19th Annual Computer Security Applications Conference (ACSAC), December 2003.
18. National Institute of Standards and Technology. ICAT metabase. http://icat.nist.gov/icat.cfm, October 2004. web page fetched on October 28, 2004.
19. Giridhar Pemmasani, Hai-Feng Guo, Yifei Dong, C.R. Ramakrishnan, and I.V. Ramakrishnan. Online justification for tabled logic programs. In The 7th International Symposium on Functional and Logic Programming, April 2004.
20. Larry Peterson, Tom Anderson, David Culler, and Timothy Roscoe. A blueprint for introducing disruptive technology into the internet. In Proceedings of the 1st Workshop on Hot Topics in Networks (HotNets-I), October 2002.
21. C. R. Ramakrishnan and R. Sekar. Model-based analysis of configuration vulnerabilities. Journal of Computer Security, 10(1-2):189–209, 2002.
22. Prasad Rao, Konstantinos F. Sagonas, Terrance Swift, David S. Warren, and Juliana Freire. XSB: A system for efficiently computing well-founded semantics. In Proceedings of the 4th International Conference on Logic Programming and Non-Monotonic Reasoning (LPNMR’97), pages 2–17, Dagstuhl, Germany, July 1997. Springer Verlag.
23. Ronald W. Ritchey and Paul Ammann. Using model checking to analyze network vulnerabilities. In 2000 IEEE Symposium on Security and Privacy, pages 156–165, 2000.
24. Oleg Sheyner, Joshua Haines, Somesh Jha, Richard Lippmann, and Jeannette M. Wing. Automated generation and analysis of attack graphs. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, pages 254–265, 2002.
25. Steven J. Templeton and Karl Levitt. A requires/provides model for computer attacks. In Proceedings of the 2000 workshop on New security paradigms, pages 31–38. ACM Press, 2000.
26. Matthew Wojcik, Tiffany Bergeron, Todd Wittbold, and Robert Roberge. Introduction to OVAL: A new language to determine the presence of software vulnerabilities. http://oval.mitre.org/documents/docs03/intro/intro.html, November 2003. Web page fetched on October 28, 2004.
27. Dan Zerkle and Karl Levitt. NetKuang–A multihost configuration vulnerability checker. In Proc. of the 6th USENIX Security Symposium, pages 195–201, San Jose, California, 1996.