Quantitative Security Risk Assessment of Enterprise Networks

Protection of enterprise networks from malicious intrusions is critical to the economy and security of our nation. This article gives an overview of the techniques and challenges for security risk analysis of enterprise networks. A standard model for security analysis will enable us to answer questi...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autores principales: Ou, Xinming (Autor), Singhal, Anoop (Autor)
Autor Corporativo: SpringerLink (Online service)
Formato: Electrónico eBook
Idioma:Inglés
Publicado: New York, NY : Springer New York : Imprint: Springer, 2011.
Edición:1st ed. 2011.
Colección:SpringerBriefs in Computer Science,
Temas:
Data protection.
Computer networks .
Computers.
Electronic digital computers-Evaluation.
Data and Information Security.
Computer Communication Networks.
Hardware Performance and Reliability.
System Performance and Evaluation.
Acceso en línea:Texto Completo
Descripción
Sumario:Protection of enterprise networks from malicious intrusions is critical to the economy and security of our nation. This article gives an overview of the techniques and challenges for security risk analysis of enterprise networks. A standard model for security analysis will enable us to answer questions such as "are we more secure than yesterday" or "how does the security of one network configuration compare with another one". In this article, we will present a methodology for quantitative security risk analysis that is based on the model of attack graphs and the Common Vulnerability Scoring System (CVSS). Our techniques analyze all attack paths through a network, for an attacker to reach certain goal(s).
Descripción Física:XIII, 28 p. online resource.
ISBN:9781461418603
ISSN:2191-5776

Ejemplares similares