{"title":"Computer Vision-Based Risk Assessment on Heterogeneous Mobile Network Operating Environments","authors":"Youngjun Kim, Namkyun Baik","doi":"10.17559/tv-20230328000486","DOIUrl":null,"url":null,"abstract":": In order to logically prioritize the urgent risks in the heterogeneous mobile network operating environment, we derive environmental factors that can reflect the characteristics of the heterogeneous network operating environment and present them as an improved security risk assessment formula. The prioritized risks derived through this improved risk assessment formula can visually express the severity of the risk by using computer vision. The purpose of this study was to derive environmental factors that can reflect the security control characteristics of various heterogeneous network operating environments and to apply them to security risk evaluation formulas to prioritize urgent risks and easily identify the degree of security risks. In the existing risk assessment formula, risk is calculated based on three indices: the importance of the asset, the vulnerability score, and the threat score. However, two problems were derived from the existing risk assessment. First, the existing risk assessment formula is insufficient to reflect the controlled environment characteristics of each network because the risk level is calculated based on individual assets. Second, if the same systems with the same purpose (same settings) are operated in different heterogeneous network operating environments, they are counted at the same risk level, and action cannot be prioritized quickly. To solve these problems, we propose an indicator called environmental factor ( E ), which is a combination of three indices. The three indices are \"Network Diversity Index ( NDI ), network Zone Separation Index ( ZSI ) and Control Level Index ( CLI )\". NDI expressed the diversity of networks numerically. ZSI is a numerical expression of the complexity of the network zone. CLI is a numerical expression of the degree of network control level. Results of the study showed that the risk assessment formula applying the proposed risk assessment factors can quickly identify urgent risks and act quickly. In heterogeneous mobile network operating environment in which numerous systems are operated, really urgent risks among the risks calculated through the proposed risk assessment will be handled quickly and logically.","PeriodicalId":510054,"journal":{"name":"Tehnicki vjesnik - Technical Gazette","volume":"327 12","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-04-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Tehnicki vjesnik - Technical Gazette","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.17559/tv-20230328000486","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
: In order to logically prioritize the urgent risks in the heterogeneous mobile network operating environment, we derive environmental factors that can reflect the characteristics of the heterogeneous network operating environment and present them as an improved security risk assessment formula. The prioritized risks derived through this improved risk assessment formula can visually express the severity of the risk by using computer vision. The purpose of this study was to derive environmental factors that can reflect the security control characteristics of various heterogeneous network operating environments and to apply them to security risk evaluation formulas to prioritize urgent risks and easily identify the degree of security risks. In the existing risk assessment formula, risk is calculated based on three indices: the importance of the asset, the vulnerability score, and the threat score. However, two problems were derived from the existing risk assessment. First, the existing risk assessment formula is insufficient to reflect the controlled environment characteristics of each network because the risk level is calculated based on individual assets. Second, if the same systems with the same purpose (same settings) are operated in different heterogeneous network operating environments, they are counted at the same risk level, and action cannot be prioritized quickly. To solve these problems, we propose an indicator called environmental factor ( E ), which is a combination of three indices. The three indices are "Network Diversity Index ( NDI ), network Zone Separation Index ( ZSI ) and Control Level Index ( CLI )". NDI expressed the diversity of networks numerically. ZSI is a numerical expression of the complexity of the network zone. CLI is a numerical expression of the degree of network control level. Results of the study showed that the risk assessment formula applying the proposed risk assessment factors can quickly identify urgent risks and act quickly. In heterogeneous mobile network operating environment in which numerous systems are operated, really urgent risks among the risks calculated through the proposed risk assessment will be handled quickly and logically.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
