Publisher: IGI Global_journal
E-ISSN: 1546-5004|12|1|45-61
ISSN: 1545-7362
Source: International Journal of Web Services Research (IJWSR), Vol.12, Iss.1, 2015-01, pp. : 45-61
Disclaimer: Any content in publications that violate the sovereignty, the constitution or regulations of the PRC is not accepted or approved by CNPIEC.
Abstract
Analyzing attack graphs can provide network security hardening strategies for administrators. Concerning the problems of high time complexity and costly hardening strategies in previous methods, a method for generating low cost network security hardening strategies is proposed based on attack graphs. The authors' method assesses risks of attack paths according to path length and the common vulnerability scoring system, limits search scope with a threshold to reduce the time complexity, and lowers cost of hardening strategies by using a heuristic algorithm. The experimental results show that the authors' method has good scalability, and significantly reduces cost of network security hardening strategies with reasonable running time.
Related content
Access to resources
Recommend
International Journal of Trust Management in Computing and Communications, Vol. 1, Iss. 3-4, 2013-09 ,pp. :
NetSEC: metrology-based application for network security
Future Generation Computer Systems, Vol. 19, Iss. 2, 2003-02 ,pp. :