Research on Network Attack Effect Evaluation Based on Confrontational Perspective

Abstract

The cyberspace battlefield is full of strategic confrontations between attack and defense sides. However, the existing evaluation methods do not consider the impact of defense strategies on attack effect, and only carry out unilateral attack effect evaluation from the perspective of attacker, which cannot reflect the dynamic changes of attack effect against different defense strategies. To solve this problem, we propose the Confrontation Oriented Attack Effect Evaluation Model (CO-AEEM) to evaluate the attack effect from the perspective of both attack and defense sides. By creating CO-AEEM, we establish a multi-level evaluation index system covering all-assests-elements of the target object, and propose an attack effect evaluation algorithm to reduce the impact of subjective factors and adapt to the complex characteristics of network confrontation, then design the comparison and evaluation process of attack test and confrontation test according to the changes of defense measures. Finally, the simulation experiments in various confrontation scenarios are carried out in network range, which show that the model can not only describe the actual attack effect in confrontation with different defense strategies, but also the effectiveness degree of defense strategies against various types of attacks. Thus, the evaluation results of CO-AEEM can provide scientific guidance of action decision making and equipment development in network counterwork.CCS Concepts•Security and privacy➝Formal methods and theory of security •Computing methodologies➝Modeling and simulation.