Abstract
Modern attack-graph techniques can automatically discover all possible ways an attacker can compromise an enterprise network by analyzing configuration information of the hosts and network [7, 12, 13, 19, 20, 24, 26, 27, 37, 38, 39, 41, 44, 46, 47, 50, 52]. We will use the MulVAL logical attack graph [38, 39] as the foundation to build themetric models. A logical attack graph directly encodes the logical causality relationship among configuration settings and potential attacker privileges. It shows “why an attack can happen”, instead of “how an attack happens” as in some earlier attack-graph works [41, 46, 47, 50]. Its semantics is similar to the “exploit dependency attack graph” in the Cauldron project [7, 20, 35], and to a lesser degree also similar to the “multiple-prerequisite attack graph” [19] in the NetSPA project [27].
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
Copyright information
© 2012 The Author(s)
About this chapter
Cite this chapter
Ou, X., Singhal, A. (2012). Attack Graph Techniques. In: Quantitative Security Risk Assessment of Enterprise Networks. SpringerBriefs in Computer Science. Springer, New York, NY. https://doi.org/10.1007/978-1-4614-1860-3_2
Download citation
DOI: https://doi.org/10.1007/978-1-4614-1860-3_2
Published:
Publisher Name: Springer, New York, NY
Print ISBN: 978-1-4614-1859-7
Online ISBN: 978-1-4614-1860-3
eBook Packages: Computer ScienceComputer Science (R0)