Abstract

Attack graphs are a powerful tool for security risk assessment by analysing network vulnerabilities and the paths attackers can use to compromise network resources. The uncertainty about the attacker's behaviour makes Bayesian networks suitable to model attack graphs to perform static and dynamic analysis. Previous approaches have focused on the formalization of attack graphs into a Bayesian model rather than proposing mechanisms for their analysis. In this paper we propose to use efficient algorithms to make exact inference in Bayesian attack graphs, enabling the static and dynamic network risk assessments. To support the validity of our approach we have performed an extensive experimental evaluation on synthetic Bayesian attack graphs with different topologies, showing the computational advantages in terms of time and memory use of the proposed techniques when compared to existing approaches.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A scalable algorithm for network reachability analysis with cyclic attack graphs
Kengo Zenitani
Journal of Computer Security | VOL. 31
Kengo ZenitaniKengo Zenitani
26 Jan 2023
Stochastic Simulation Techniques for Inference and Sensitivity Analysis of Bayesian Attack Graphs
Isaac Matthews ... Aad Van Moorsel
-
Isaac Matthews, et. al.Isaac Matthews ... Aad Van Moorsel
01 Jan 2020
Efficient Attack Graph Analysis through Approximate Inference
Luis Muñoz-González ... Andrea Paudice
ACM Transactions on Privacy and Security | VOL. 20
Luis Muñoz-González, et. al.Luis Muñoz-González ... Andrea Paudice
31 Jul 2017
Cyclic Bayesian Attack Graphs: A Systematic Computational Approach
Isaac Matthews ... Sadegh Soudjani
-
Isaac Matthews, et. al.Isaac Matthews ... Sadegh Soudjani
01 Dec 2020
View more papers

More From: IEEE Transactions on Dependable and Secure Computing

Paper Title
Journal
Date
Author
IMIH: Imperceptible Medical Image Hiding for Secure Healthcare
Ping Ping ... Pan Wei
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Ping Ping, et. al.Ping Ping ... Pan Wei
01 Sep 2024
Sine: Similarity is Not Enough for Mitigating Local Model Poisoning Attacks in Federated Learning
Harsh Kasyap ... Somanath Tripathy
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Harsh Kasyap, et. al.Harsh Kasyap ... Somanath Tripathy
01 Sep 2024
Concise RingCT Protocol Based on Linkable Threshold Ring Signature
Junke Duan ... Xiaoya Hu
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Junke Duan, et. al.Junke Duan ... Xiaoya Hu
01 Sep 2024
MicroFI: Non-Intrusive and Prioritized Request-Level Fault Injection for Microservice Applications
Hongyang Chen ... Zilong He
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Hongyang Chen, et. al.Hongyang Chen ... Zilong He
01 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.