Title | ||
---|---|---|
Dynamically enabled defense effectiveness evaluation of a home Internet based on vulnerability analysis and attack layer measurement. |
Abstract | ||
---|---|---|
Smart devices in a home Internet, such as routers and cameras, suffer malicious attacks from hackers on a daily basis. Defenders should change system states dynamically to improve the system’s defense ability. To quantify evaluation of defense effectiveness, this paper proposes an improved vulnerability scoring method for home Internets based on the Information Security Technology Security Vulnerability Classification Guide, which calculates a vulnerability score. A higher vulnerability score indicates weaker defense ability. This method only considers defense. In actual system attack and defense, the actions of attackers should also be considered. Therefore, a measurement method for the attack layer based on the Markov chain (MC) is proposed. This method builds a model of an attack layer that can assess whether the defender’s dynamic defense is effective by calculating the factor attack layer detection probability P d. To optimize computing process, this paper introduces stochastic Petri nets (SPN) so that the parameters of MC transition matrix are easily gained. This model also obtains the minimum time period Δt, during which the defender must change system states. If the change time period is greater than Δt, attackers increase their probability of hacking into the home Internet system. Finally, the study concludes that if the vulnerability scores are lower after the system states are changed, Δt will become longer, meaning the home Internet system has enhanced defense ability. |
Year | DOI | Venue |
---|---|---|
2018 | 10.1007/s00779-017-1084-3 | Personal and Ubiquitous Computing |
Keywords | Field | DocType |
Home Internet,Dynamically enabled defense,Vulnerability score,Markov chain,Attack layer | Vulnerability (computing),Computer science,Computer security,Vulnerability assessment,Markov chain,Information security,Stochastic Petri net,Hacker,Vulnerability,The Internet | Journal |
Volume | Issue | ISSN |
22 | 1 | 1617-4909 |
Citations | PageRank | References |
0 | 0.34 | 10 |
Authors | ||
6 |
Name | Order | Citations | PageRank |
---|---|---|---|
Min Lei | 1 | 53 | 14.03 |
Yu Yang | 2 | 1 | 2.05 |
Nan Ma | 3 | 9 | 7.93 |
Huizhong Sun | 4 | 0 | 0.34 |
Chunru Zhou | 5 | 0 | 0.34 |
Minyao Ma | 6 | 0 | 0.34 |