Полное описание
>
Ou, X. Quantitative Security Risk Assessment of Enterprise Networks / by Xinming Ou, Anoop Singhal. - Electronic text data. - New York, NY : Springer, 2011. - (SpringerBriefs in Computer Science, ISSN 2191-5768). - URL: http://dx.doi.org/10.1007/978-1-4614-1860-3. - Загл. с экрана. - ISBN 978-1-4614-1860-3. - DOI 10.1007/978-1-4614-1860-3. - Текст : электронный.
Содержание: >
The Need for Quantifying Security -- Attack Graph Techniques -- The Common Vulnerability Scoring System (CVSS) -- Security Risk Analysis of Enterprise Networks Using Attack Graphs -- Conclusion.
ГРНТИ | УДК | |
50.37.23 | 004.056 |
Рубрики:
computer science
computer software -- Reusability.
computer communication systems
computer system failures
computer security
computer Science
systems and Data Security
computer Communication Networks
performance and Reliability
system Performance and Evaluation
Аннотация: Protection of enterprise networks from malicious intrusions is critical to the economy and security of our nation. This article gives an overview of the techniques and challenges for security risk analysis of enterprise networks. A standard model for security analysis will enable us to answer questions such as “are we more secure than yesterday” or “how does the security of one network configuration compare with another one”. In this article, we will present a methodology for quantitative security risk analysis that is based on the model of attack graphs and the Common Vulnerability Scoring System (CVSS). Our techniques analyze all attack paths through a network, for an attacker to reach certain goal(s).
Доп. точки доступа:
Singhal, A.
>
Просмотр издания