Network Risk Assessment Method Based on Asset Correlation Graph
In order to enhance the security of network operations, establish effective security measures, prevent the destruction of security incidents, and reduce or eliminate the losses caused by threats through network risk assessment is of important practical significance. However, most risk assessment methods focus on the research of threats and vulnerabilities. There are relatively few researches on risk based on network assets and there is a lack of accuracy in risk assessment. Therefore, this paper proposes a network risk assessment method based on asset association graphs. The method first describes the network from the perspective of asset interconnection and builds an asset association graph; secondly, it builds a threat scenario based on the asset association graph, identifies a threat event, and uses the probability of a threat event and the loss caused by the asset to obtain a quantitative description of the risk assessment; Different network risk levels and make decisions. Experiments show that the method of network risk assessment based on asset association proposed in this paper can realize the risk assessment of all assets, hosts and entire network system in the network, and provide effective guidance for network security protection.
KeywordsNetwork security Risk assessment Asset association diagram Vulnerability Probabilistic risk analysis
This article is supported by National Key R&D Program of China (Grant no. 2016YFB0800700) and National Natural Science Foundation of China (Grant no. U1636115).
- 1.Dai, F.: Research on Network Security Risk Assessment Technology Based on Attack Graph Theory. Beijing University of Posts and Telecommunications, Beijing (2015)Google Scholar
- 2.He, Y., Di, G., Wang, B., Yang, G.: Quantitative evaluation method of grade protection based on Delphi method assignment. In: National Information Security Level Protection Technology Conference (2014)Google Scholar
- 3.Schnerier, B.: Attack trees-modeling security threats. Dr Dobb’S J. 12(24), 21–29 (1999)Google Scholar
- 4.Phillips, C., Swiler, L.P.: A graph-based system for network vulnerability analysis. Sandia National Laboratories Albuquerque, NM, pp. 71–79 (1998)Google Scholar
- 5.Sheyner, O., Haines, J., Jha, J., Lippmann, R., Wing, J.M.: Automated generation and analysis of attack graphs. In: Proceedings of the 2002 IEEE Symposium on Security and Privacy, CA, vol. 5, pp. 254–265 (2002)Google Scholar
- 6.Ammann, P., Pamula, J., Ritchey, R., Street, J.: A host-based approach to network attack chaining analysis. In: Computer Security Applications Conference, pp. 72–84 (2005)Google Scholar
- 10.Xiao, X.: Research on Cybersecurity Risk Assessment Based on Model. Fudan University, Shanghai (2008)Google Scholar