Advances in Topological Vulnerability Analysis Export

@article{10.1109/CATCH.2009.19, abstract = {Currently, network administrators must rely on labor-intensive processes for tracking network configurations and vulnerabilities, which requires a great deal of expertise and is error prone. The organization of networks and the inter dependencies of vulnerabilities are so complex as to make traditional vulnerability analysis inadequate. We describe a Topological Vulnerability Analysis (TVA) approach that analyzes vulnerability dependencies and shows all possible attack paths into a network. From models of the network vulnerabilities and potential attacker exploits, we discover attack paths (organized as graphs) that convey the impact of individual and combined vulnerabilities on overall security. We provide sophisticated attack graph visualizations, with high-level overviews and detail drill down. Decision support capabilities let analysts make optimal tradeoffs between safety and availability, and show how to best apply limited security resources. We employ efficient algorithms that scale well to larger networks.}, address = {Los Alamitos, CA, USA}, author = {Noel, Steven and Elder, Matthew and Jajodia, Sushil and Kalapa, Pramod and O'Hare, Scott and Prole, Kenneth}, citeulike-article-id = {6044857}, citeulike-linkout-0 = {http://dx.doi.org/http://doi.ieeecomputersociety.org/10.1109/CATCH.2009.19}, doi = {http://doi.ieeecomputersociety.org/10.1109/CATCH.2009.19}, journal = {Conference For Homeland Security, Cybersecurity Applications \& Technology}, keywords = {attack\_graph, computer\_security, cybersecurity}, pages = {124--129}, posted-at = {2009-10-30 21:00:08}, priority = {0}, publisher = {IEEE Computer Society}, title = {Advances in Topological Vulnerability Analysis}, url = {http://dx.doi.org/http://doi.ieeecomputersociety.org/10.1109/CATCH.2009.19}, volume = {0}, year = {2009} }

TY - JOUR ID - 10.1109/CATCH.2009.19 L3 - citeulike-article-id:6044857 N2 - Currently, network administrators must rely on labor-intensive processes for tracking network configurations and vulnerabilities, which requires a great deal of expertise and is error prone. The organization of networks and the inter dependencies of vulnerabilities are so complex as to make traditional vulnerability analysis inadequate. We describe a Topological Vulnerability Analysis (TVA) approach that analyzes vulnerability dependencies and shows all possible attack paths into a network. From models of the network vulnerabilities and potential attacker exploits, we discover attack paths (organized as graphs) that convey the impact of individual and combined vulnerabilities on overall security. We provide sophisticated attack graph visualizations, with high-level overviews and detail drill down. Decision support capabilities let analysts make optimal tradeoffs between safety and availability, and show how to best apply limited security resources. We employ efficient algorithms that scale well to larger networks. JF - Conference For Homeland Security, Cybersecurity Applications & Technology AD - Los Alamitos, CA, USA EP - 129 TI - Advances in Topological Vulnerability Analysis PB - IEEE Computer Society VL - 0 SP - 124 KW - attack_graph KW - computer_security KW - cybersecurity AU - Noel, Steven AU - Elder, Matthew AU - Jajodia, Sushil AU - Kalapa, Pramod AU - O'Hare, Scott AU - Prole, Kenneth PY - 2009/// UR - http://dx.doi.org/http://doi.ieeecomputersociety.org/10.1109/CATCH.2009.19 ER -