网络漏洞分析的一些框架、体系结构和方法

2012 International Conference on System Engineering and Technology (ICSET) Pub Date : 2012-10-25 DOI:10.1109/ICSENGT.2012.6339320

T. Purboyo, B. Rahardjo, Kuspriyanto

{"title":"网络漏洞分析的一些框架、体系结构和方法","authors":"T. Purboyo, B. Rahardjo, Kuspriyanto","doi":"10.1109/ICSENGT.2012.6339320","DOIUrl":null,"url":null,"abstract":"Network administrators must rely on labour-intensive processes for tracking network configurations and vulnerabilities, which requires a lot of expertise and error prone. Organizational network vulnerabilities and interdependencies are so complex to make traditional vulnerability analysis become inadequate. Decision support capabilities let analysts make tradeoffs between security and optimum availability, and indicates how best to apply limited security resources. Recent work in network security has focused on the fact that a combination of exploitation is the typical way in which the invader breaks into the network. Researchers have proposed various algorithms to generate graphs based attack tree (or graph). In this paper, we present a framework, Architecture and Approach to Vulnerability Analysis.","PeriodicalId":325365,"journal":{"name":"2012 International Conference on System Engineering and Technology (ICSET)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Some framework, Architecture and Approach for analysis a network vulnerability\",\"authors\":\"T. Purboyo, B. Rahardjo, Kuspriyanto\",\"doi\":\"10.1109/ICSENGT.2012.6339320\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Network administrators must rely on labour-intensive processes for tracking network configurations and vulnerabilities, which requires a lot of expertise and error prone. Organizational network vulnerabilities and interdependencies are so complex to make traditional vulnerability analysis become inadequate. Decision support capabilities let analysts make tradeoffs between security and optimum availability, and indicates how best to apply limited security resources. Recent work in network security has focused on the fact that a combination of exploitation is the typical way in which the invader breaks into the network. Researchers have proposed various algorithms to generate graphs based attack tree (or graph). In this paper, we present a framework, Architecture and Approach to Vulnerability Analysis.\",\"PeriodicalId\":325365,\"journal\":{\"name\":\"2012 International Conference on System Engineering and Technology (ICSET)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-10-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 International Conference on System Engineering and Technology (ICSET)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSENGT.2012.6339320\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 International Conference on System Engineering and Technology (ICSET)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSENGT.2012.6339320","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

网络管理员必须依靠劳动密集型的过程来跟踪网络配置和漏洞，这需要大量的专业知识，而且容易出错。组织网络漏洞及其相互依赖关系的复杂性使得传统的漏洞分析变得不够充分。决策支持功能允许分析人员在安全性和最佳可用性之间进行权衡，并指出如何最好地应用有限的安全性资源。最近在网络安全方面的工作集中在这样一个事实上，即组合利用是入侵者侵入网络的典型方式。研究人员提出了各种基于攻击树(或图)生成图的算法。在本文中，我们提出了一个漏洞分析的框架、架构和方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Some framework, Architecture and Approach for analysis a network vulnerability

Network administrators must rely on labour-intensive processes for tracking network configurations and vulnerabilities, which requires a lot of expertise and error prone. Organizational network vulnerabilities and interdependencies are so complex to make traditional vulnerability analysis become inadequate. Decision support capabilities let analysts make tradeoffs between security and optimum availability, and indicates how best to apply limited security resources. Recent work in network security has focused on the fact that a combination of exploitation is the typical way in which the invader breaks into the network. Researchers have proposed various algorithms to generate graphs based attack tree (or graph). In this paper, we present a framework, Architecture and Approach to Vulnerability Analysis.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 International Conference on System Engineering and Technology (ICSET)

自引率

0.00%

发文量