Optimal security hardening measures selection model based on Bayesian attack graph

Computer Engineering and Applications ›› 2016, Vol. 52 ›› Issue (11): 125-130.

Previous Articles Next Articles

Optimal security hardening measures selection model based on Bayesian attack graph

GAO Ni1，2, GAO Ling1, HE Yiyue1，3, WANG Fan1

1.School of Information Science & Technology, Northwest University, Xi’an 710127, China
2.School of Information, Xi’an University of Finance and Economics, Xi’an 710100, China
3.School of Economics & Management, Northwest University, Xi’an 710127, China

Online:2016-06-01 Published:2016-06-14

基于贝叶斯攻击图的最优安全防护策略选择模型

高妮1，2，高岭1，贺毅岳1，3，王帆1

1.西北大学信息科学与技术学院，西安 710127
2.西安财经学院信息学院，西安 710100
3.西北大学经济管理学院，西安 710127

Abstract

Abstract: An active defense technology based on attack graph has been applied on network security very well. However, the uncertainty about attacker actions is rarely considered in calculating the optimal countermeasure. Based on the above, an Optimal Hardening Measures Selection model based on Bayesian Attack Graphs（HMSBAG） is presented in this paper. This model describes the uncertainty of attack action by using the probability of successful exploits and the probability of successful attacks. Then, a probability attack graph, which describes the cause-consequence relationships among multi-step atomic attack in one attack progress, is built by using Bayesian belief networks to assess the current network risk. By using cost-benefit analysis method, the economics index of hardening-cost and attack-benefit are built and the optimal hardening measures selection algorithm based on particle swarm optimization is presented. Experimental results validate the feasibility and effectiveness of the model in the decision of optimal hardening measures to reduce the network security risk.

Key words: attack graph, Bayesian network, countermeasure, particle swarm optimization

摘要： 目前基于攻击图的网络安全主动防御技术在计算最优防护策略时，很少考虑网络攻击中存在的不确定性因素。为此，提出一种基于贝叶斯攻击图的最优防护策略选择（Optimal Hardening Measures Selection based on Bayesian Attack Graphs，HMSBAG）模型。该模型通过漏洞利用成功概率和攻击成功概率描述攻击行为的不确定性;结合贝叶斯信念网络建立用于描述攻击行为中多步原子攻击间因果关系的概率攻击图，进而评估当前网络风险;构建防护成本和攻击收益的经济学指标及指标量化方法，运用成本-收益分析方法，提出了基于粒子群的最优安全防护策略选择算法。实验验证了该模型在防护策略决策方面的可行性和有效性，有效降低网络安全风险。

关键词: 攻击图, 贝叶斯网络, 防护措施, 粒子群算法

GAO Ni1，2, GAO Ling1, HE Yiyue1，3, WANG Fan1. Optimal security hardening measures selection model based on Bayesian attack graph[J]. Computer Engineering and Applications, 2016, 52(11): 125-130.

高妮1，2，高岭1，贺毅岳1，3，王帆1. 基于贝叶斯攻击图的最优安全防护策略选择模型[J]. 计算机工程与应用, 2016, 52(11): 125-130.

[1]	SHI Chuntian, ZENG Yanyang, HOU Shouming. Summary of Application of Swarm Intelligence Algorithms in Image Segmentation [J]. Computer Engineering and Applications, 2021, 57(8): 36-47.
[2]	LI Jingxing, YANG Youlong. Feature Selection of Markov Blanket for High Dimensional Data [J]. Computer Engineering and Applications, 2021, 57(6): 58-66.
[3]	ZHU Jiaying, GAO Maoting. AUV Path Planning Based on Particle Swarm Optimization and Improved Ant Colony Optimization [J]. Computer Engineering and Applications, 2021, 57(6): 267-273.
[4]	HU Xiaomin, WANG Mingfeng, ZHANG Shourong, LI Min. New Differential Evolution with Particle Swarm Optimization Algorithm for Text Clustering [J]. Computer Engineering and Applications, 2021, 57(4): 61-67.
[5]	WANG Jiayue, SHI Li. Research on Path Optimization and Charging Strategy of Electric Refrigerated Vehicle Considering Cost of Battery Capacity Degradation [J]. Computer Engineering and Applications, 2021, 57(24): 283-289.
[6]	CHEN Wanfen, WANG Yujia, LIN Weixing. Heterogeneous Ensemble Surrogate Assisted Multi-objective Particle Swarm Optimization Algorithm [J]. Computer Engineering and Applications, 2021, 57(23): 71-80.
[7]	DU Shouxin, WU Tao. Study on Application of Double Population Hybrid Genetic Algorithm in Cut Order Planning [J]. Computer Engineering and Applications, 2021, 57(22): 182-189.
[8]	LIN Weixing, WANG Yujia, CHEN Wanfen, LIANG Haina. High-Dimensional Data Feature Selection Algorithm Based on Multifactor Particle Swarm Optimization [J]. Computer Engineering and Applications, 2021, 57(22): 199-207.
[9]	XU Xialing, LIU Tao, TIAN Guohui, YU Wenjuan, XIAO Dajun, LIANG Shanpeng. Review of Occlusion Face Recognition Methods [J]. Computer Engineering and Applications, 2021, 57(17): 46-60.
[10]	LI Leixiao, DENG Dan, LI Jie, WANG Yongsheng. All-to-All Comparison Computing Data Distribution Strategy Based on Particle Swarm Optimization [J]. Computer Engineering and Applications, 2021, 57(15): 109-117.
[11]	YU Guolong, ZHAO Yong, WU Lian, CUI Zhongwei. Improvement of QPSO Algorithm and Its Application in DBN Parameter Optimization [J]. Computer Engineering and Applications, 2021, 57(10): 154-162.
[12]	LIAO Weilin, CHENG Shan, SHANG Dongdong, WEI Zhaobin. Particle Swarm Optimization Algorithm Integrated with Multiple-Strategies [J]. Computer Engineering and Applications, 2021, 57(1): 69-76.
[13]	GUO Xuekun, QIN Yuanhui, DU Liang, LUO Yongliang, WANG Hongan. Flight Deck Aviation Support Job Detection Based on Multi-entity Bayesian Networks [J]. Computer Engineering and Applications, 2021, 57(1): 242-253.
[14]	CHEN Haiyang, LIU Xiqing, HUAN Xiaomin. One-step Prediction SVDDBN Missing Data Interpolation Algorithm [J]. Computer Engineering and Applications, 2020, 56(7): 81-87.
[15]	HUO Lin, LU Yinli. Improved Particle Swarm Optimization for Android Malware Detection [J]. Computer Engineering and Applications, 2020, 56(7): 96-101.

Optimal security hardening measures selection model based on Bayesian attack graph

基于贝叶斯攻击图的最优安全防护策略选择模型

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics