Advertisement

Attack Graph Techniques

Chapter
Part of the SpringerBriefs in Computer Science book series (BRIEFSCOMPUTER)

Abstract

Modern attack-graph techniques can automatically discover all possible ways an attacker can compromise an enterprise network by analyzing configuration information of the hosts and network [7, 12, 13, 19, 20, 24, 26, 27, 37, 38, 39, 41, 44, 46, 47, 50, 52]. We will use the MulVAL logical attack graph [38, 39] as the foundation to build themetric models. A logical attack graph directly encodes the logical causality relationship among configuration settings and potential attacker privileges. It shows “why an attack can happen”, instead of “how an attack happens” as in some earlier attack-graph works [41, 46, 47, 50]. Its semantics is similar to the “exploit dependency attack graph” in the Cauldron project [7, 20, 35], and to a lesser degree also similar to the “multiple-prerequisite attack graph” [19] in the NetSPA project [27].

Keywords

Database Server Enterprise Network Reasoning Engine Attack Graph Attack Path 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© The Author(s) 2012

Authors and Affiliations

  1. 1.Computing and Information Sciences Kansas State UniversityManhattanUSA
  2. 2.Computer Security DivisionNational Institute of Standards and Technology (NIST)GaithersburgUSA

Personalised recommendations