Yanfang Fu, Chengli Wang, Fang Wang, LiPeng S., Zhi-Ye Du, Zijian Cao
{"title":"An intelligent method for building attack paths based on Bayesian attack graphs","authors":"Yanfang Fu, Chengli Wang, Fang Wang, LiPeng S., Zhi-Ye Du, Zijian Cao","doi":"10.1117/12.2653480","DOIUrl":null,"url":null,"abstract":"To address the scenario that there is the subjectivity of prior probability in the attack graph after the introduction of Bayesian network in the network attack model and the failure of attack nodes is not considered, an optimization scheme of the Bayesian attack graph and an intelligent construction method of attack path based on this scheme are proposed. The risk value of the target network is calculated to avoid the subjectivity of the prior probability and the devices are abstracted as attack graph nodes, and the atomic attacks are used as causal inference relations to reconstruct the attack graph. The analysis results show that the method has a significant improvement in the speed of attack graph and attack path generation and attack success rate, and it can perform the intelligent construction of attack path when the attack nodes fail.","PeriodicalId":32903,"journal":{"name":"JITeCS Journal of Information Technology and Computer Science","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2022-12-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"JITeCS Journal of Information Technology and Computer Science","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1117/12.2653480","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
To address the scenario that there is the subjectivity of prior probability in the attack graph after the introduction of Bayesian network in the network attack model and the failure of attack nodes is not considered, an optimization scheme of the Bayesian attack graph and an intelligent construction method of attack path based on this scheme are proposed. The risk value of the target network is calculated to avoid the subjectivity of the prior probability and the devices are abstracted as attack graph nodes, and the atomic attacks are used as causal inference relations to reconstruct the attack graph. The analysis results show that the method has a significant improvement in the speed of attack graph and attack path generation and attack success rate, and it can perform the intelligent construction of attack path when the attack nodes fail.