Journal of Beijing University of Posts and Telecommunications

  • EI核心期刊

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2008, Vol. 31 ›› Issue (4): 58-61.doi: 10.13190/jbupt.200804.58.wangyl

• Papers • Previous Articles     Next Articles

Model-Based Quantitative Method of Network Vulnerability Analysis

WANG Yu-long, YANG Fang-chun, SUN Qi-bo   

  1. State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China)
  • Received:2008-01-08 Revised:1900-01-01 Online:2008-08-30 Published:2008-08-30
  • Contact: WANG Yu-long

Abstract:

Abstracts network into a two-tuple containing hierarchical nodes and horizontal links. Variables of protocol entities from each layer are combined to represent three types of network states: Secure, Error and Fail-ure. The causality between vulnerabilities and network failures are described, and the dependency relationship between the finding, verifying and correlating of vulnerabilities is analyzed. A quantitative method for measuring network vulnerability is proposed and vulnerability from a theoretical perspective is as well analyzed. Finally, three solutions to lower security risks are presented.

Key words: network, vulnerability, quantitative analysis, security risk

CLC Number: