Application of Graph Theory in Threat Situation Analysis of Network Security

doi:10.13190/jbupt.200901.113.chentp

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2009, Vol. 32 ›› Issue (1): 113-117.doi: 10.13190/jbupt.200901.113.chentp

• Reports • Previous Articles Next Articles

Application of Graph Theory in Threat Situation Analysis of Network Security

CHEH Tian-Ping

Received:2008-09-16 Revised:2008-12-12 Online:2009-01-28 Published:2009-01-28
Contact: CHEH Tian-Ping

Abstract

Abstract:

A new threat situation analysis based on the network graph model is presented. The attack cost of adjacent nodes is defined, and the multi-attribute utility theory is adopted to quantify its value. The graph edges are endowed with the weight representing the attack cost, and the threat situation of network node is also analyzed by the shortest accessible path arithmetic. The case study demonstrated that the method is concise and effective, that will help to optimize the safety strategy.

Key words: network security, graph theory model, attack cost, threat road

CHEH Tian-Ping. Application of Graph Theory in Threat Situation Analysis of Network Security[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(1): 113-117.

References

[1] 张永铮, 方滨兴, 迟悦, 等. 网络风险评估中网络节点关联性的研究[J]. 计算机学报, 2007, 30(2): 234-240. Zhang Yongzheng, Fang Binxing, Chi Yue, et al. Research on network node correlation in network risk assessment[J]. Chinese Journal of Computers, 2007, 30(2): 234-240.
[2] Ortalo R, Deswarte Y, Kaaniche M. Experimenting with quantitative evaluation tools for monitoring operational security[J]. IEEE Trans on Software Engineering, 1999, 25(5): 633-651.
[3] 王玉龙, 杨放春, 孙其博. 基于模型的网络脆弱性定量分析方法[J]. 北京邮电大学学报, 2008, 31(4): 58-61. Wang Yulong, Yang Fangchun, Sun Qibo. Model-based quantitative method of network vulnerability analysis[J]. Journal of Beijing University of Posts and Telecommunications, 2008, 31(4): 58-61.
[4] 陈秀真, 郑庆华, 管晓宏, 等. 层次化网络安全威胁态势量化评估方法. 软件学报, 2006, 17(4): 885-896. Chen Xiuzhen, Zheng Qinghua, Guan Xiaohong, et al. Quantitative hierarchical threat evaluation model for network security[J]. Journal of Software, 2006, 17(4): 885-896.
[5] 汤永利, 徐国爱, 钮心忻, 等. 基于信息熵的信息安全风险分析模型[J]. 北京邮电大学学报, 2008, 31(2): 50-53. Tang Yongli, Xu Guo'ai, Niu Xinxin, et al. Information security risk analysis model using information entropy[J]. Journal of Beijing University of Posts and Telecommunications, 2008, 31(2): 50-53.
[6] 严蔚敏, 吴伟民. 数据结构[M]. 北京:清华大学出版社, 2001. 156-158.
[7] 甘早斌, 吴平, 路松峰, 等. 基于扩展攻击树的信息系统安全风险评估. 计算机应用研究, 2007, 24(11): 153-156. Gan Zaobin, Wu Ping, Lu Songfeng, et al. Information system security risk evaluation based on attack tree[J]. Journal of Application Research of Computers, 2007, 24(11): 153-156.
[8] Evans S, Waller J. Risk-based security engineering through the eyes of the adversary//Proceedings of the 6th IEEE Systems, Man and Cybemetics Information Assurance Workshop. New York: IEEE Computer Society Press, 2005:158-165.

[1]	SHI Zicheng, LI Xin, TANG Ying, HUANG Shanguo. Optical Packet Filtering System Based on All-Optical Pattern Matching [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(3): 96-101.
[2]	YANG Hongyu, YUAN Haihang, ZHANG Liang. A Risk Assessment Method of Network Host Node with Host Importance [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(2): 16-21.
[3]	TANG Hong-wei, FENG Sheng-zhong, ZHAO Xiao-fang. TOChain: a High-Performance SFC for Virtual Network Security [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(1): 70-80.
[4]	LI Xu, BAO Jing-jing, LIU Ying. Formation Security: Black Hole Problem [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(1): 12-17.
[5]	BAI Yuan, WANG Qian, JIA Qi-lan, ZHANG Hui-bing. An Efficient and Secured AKA for EPS Networks [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(s1): 10-14.
[6]	LIU Jing, GU Li-ze, Niu Xin-xin, YANG Yi-xian, LI Zhong-xian. Network Security Events Analyze Method Based on Neural Networks and Genetic Algorithm [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(2): 50-54.
[7]	FU Yu, CHEN Yong-qiang, WU Xiao-ping, SONG Yan. Network Attack-Defense Strategies Selection Based on Stochastic Game Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 35-39.
[8]	CHEN Yong-qiang, WU Xiao-ping, FU Yu, SONG Yan. Network Security Evaluation Based on Stochastic Game and Network Entropy [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 92-96.
[9]	. Network Security Analysis Based on Host-Security-Group [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2012, 35(1): 19-23.
[10]	. Network Security Assessment Based on Node Correlated HMM [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2010, 33(6): 121-124.
[11]	QIN Hua-Wang Yue-Wei DAI Zhi-Quan WANG. Security Situation Evaluation of Intrusion Tolerant System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(2): 57-61.
[12]	XIN Yang, GAO Xue-song, GAO Cheng, YANG Yi-xian . Design of Safety System to Improve the Qualitative Performance of SSL Protocol [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2007, 30(6): 89-93.
[13]	WANG Ping, FANG Bin-xing, YUN Xiao-chun. The Division Based Restraint Approach of Worm Propagation [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2006, 29(5): 24-27.
[14]	YANG Wu, FANG Bin-xing, YUN Xiao-chun, ZHANG Hong-li, HU Ming-zeng. Research and Implementation of a High-Performance Distributed Intrusion Detection System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2004, 27(4): 83-86.
[15]	XU Jie-feng. The Research of Covert Channels Based on TCP/IP [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2003, 26(S1): 144-150.

Application of Graph Theory in Threat Situation Analysis of Network Security

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments