文章基本信息

标题：Cybersecurity: A Stochastic Predictive Model to Determine Overall Network Security Risk Using Markovian Process
本地全文：下载
作者：Nawa Raj Pokhrel ; Chris P. Tsokos
期刊名称：Journal of Information Security
印刷版ISSN：2153-1234
电子版ISSN：2153-1242
出版年度：2017
卷号：08
期号：02
页码：91-105
DOI：10.4236/jis.2017.82007
语种：English
出版社：Scientific Research Publishing
摘要：There are several security metrics developed to protect the computer networks. In general, common security metrics focus on qualitative and subjective aspects of networks lacking formal statistical models. In the present study, we propose a stochastic model to quantify the risk associated with the overall network using Markovian process in conjunction with Common Vulnerability Scoring System (CVSS) framework. The model we developed uses host access graph to represent the network environment. Utilizing the developed model, one can filter the large amount of information available by making a priority list of vulnerable nodes existing in the network. Once a priority list is prepared, network administrators can make software patch decisions. Gaining in depth understanding of the risk and priority level of each host helps individuals to implement decisions like deployment of security products and to design network topologies.
关键词：Vulnerability;Attack Graph;Markov Model;Exploitability;CVSS;FIRST;NVD;IDS