Network security metrics: From known vulnerabilities to zero day attacks

Lingyu Wang; Mengyuan Zhang; Anoop Singhal

doi:10.1007/978-3-030-04834-1_22

Network security metrics: From known vulnerabilities to zero day attacks

Lingyu Wang, Mengyuan Zhang, Anoop Singhal

Research output: Chapter in Book / Report / Conference proceeding › Chapter › Academic › peer-review

Abstract

Network Secunetwork security metric enables the direct measurement of the relative effectiveness of different security solutions. The results thus provide quantifiable evidences to assist security practitioners in choosing among those security solutions, which makes network security hardening a science rather than an art. The development of network security metrics has evolved from focusing on known vulnerabilities to considering also unknown zero day attacks. This chapter reviews the challenges and solutions in designing network security metrics for both known and unknown threats. Specifically, we first examine how CVSS scores may be combined based on attack graphs to measure the overall threat of residue vulnerabilites; we then estimate the resilience of networks against unknown vulnerabilities by counting the number of such vulnerabilities along the shortest attack path; finally, we model the effect of diversity on network security with respect to zero day attacks.

Original language	English
Title of host publication	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Publisher	Springer Verlag
Pages	450-469
DOIs	https://doi.org/10.1007/978-3-030-04834-1_22
Publication status	Published - 2018
Externally published	Yes

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Funding

The author with Concordia University was partially supported by the Natural Sciences and Engineering Research Council of Canada under Discovery Grant N01035 and by the National Institutes of Standard and Technology under grant 60NANB16D287. Acknowledgements. The author with Concordia University was partially supported by the Natural Sciences and Engineering Research Council of Canada under Discovery Grant N01035 and by the National Institutes of Standard and Technology under grant 60NANB16D287.

Funders	Funder number
National Institute of Standards and Technology
Natural Sciences and Engineering Research Council of Canada	N01035, 60NANB16D287

Access to Document

10.1007/978-3-030-04834-1_22

Persistent URL (handle)

Persistent link

Cite this

Wang, L., Zhang, M., & Singhal, A. (2018). Network security metrics: From known vulnerabilities to zero day attacks. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (pp. 450-469). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). Springer Verlag. https://doi.org/10.1007/978-3-030-04834-1_22

Wang, Lingyu ; Zhang, Mengyuan ; Singhal, Anoop. / Network security metrics : From known vulnerabilities to zero day attacks. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Springer Verlag, 2018. pp. 450-469 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inbook{212ba505f49145618c51ea928f738247,

title = "Network security metrics: From known vulnerabilities to zero day attacks",

abstract = "Network Secunetwork security metric enables the direct measurement of the relative effectiveness of different security solutions. The results thus provide quantifiable evidences to assist security practitioners in choosing among those security solutions, which makes network security hardening a science rather than an art. The development of network security metrics has evolved from focusing on known vulnerabilities to considering also unknown zero day attacks. This chapter reviews the challenges and solutions in designing network security metrics for both known and unknown threats. Specifically, we first examine how CVSS scores may be combined based on attack graphs to measure the overall threat of residue vulnerabilites; we then estimate the resilience of networks against unknown vulnerabilities by counting the number of such vulnerabilities along the shortest attack path; finally, we model the effect of diversity on network security with respect to zero day attacks.",

author = "Lingyu Wang and Mengyuan Zhang and Anoop Singhal",

year = "2018",

doi = "10.1007/978-3-030-04834-1_22",

language = "English",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "450--469",

booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

}

Wang, L, Zhang, M & Singhal, A 2018, Network security metrics: From known vulnerabilities to zero day attacks. in Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Springer Verlag, pp. 450-469. https://doi.org/10.1007/978-3-030-04834-1_22

Network security metrics: From known vulnerabilities to zero day attacks. / Wang, Lingyu; Zhang, Mengyuan; Singhal, Anoop.
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Springer Verlag, 2018. p. 450-469 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

Research output: Chapter in Book / Report / Conference proceeding › Chapter › Academic › peer-review

TY - CHAP

T1 - Network security metrics

T2 - From known vulnerabilities to zero day attacks

AU - Wang, Lingyu

AU - Zhang, Mengyuan

AU - Singhal, Anoop

PY - 2018

Y1 - 2018

N2 - Network Secunetwork security metric enables the direct measurement of the relative effectiveness of different security solutions. The results thus provide quantifiable evidences to assist security practitioners in choosing among those security solutions, which makes network security hardening a science rather than an art. The development of network security metrics has evolved from focusing on known vulnerabilities to considering also unknown zero day attacks. This chapter reviews the challenges and solutions in designing network security metrics for both known and unknown threats. Specifically, we first examine how CVSS scores may be combined based on attack graphs to measure the overall threat of residue vulnerabilites; we then estimate the resilience of networks against unknown vulnerabilities by counting the number of such vulnerabilities along the shortest attack path; finally, we model the effect of diversity on network security with respect to zero day attacks.

AB - Network Secunetwork security metric enables the direct measurement of the relative effectiveness of different security solutions. The results thus provide quantifiable evidences to assist security practitioners in choosing among those security solutions, which makes network security hardening a science rather than an art. The development of network security metrics has evolved from focusing on known vulnerabilities to considering also unknown zero day attacks. This chapter reviews the challenges and solutions in designing network security metrics for both known and unknown threats. Specifically, we first examine how CVSS scores may be combined based on attack graphs to measure the overall threat of residue vulnerabilites; we then estimate the resilience of networks against unknown vulnerabilities by counting the number of such vulnerabilities along the shortest attack path; finally, we model the effect of diversity on network security with respect to zero day attacks.

UR - http://www.scopus.com/inward/record.url?scp=85058680088&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-04834-1_22

DO - 10.1007/978-3-030-04834-1_22

M3 - Chapter

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 450

EP - 469

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

PB - Springer Verlag

ER -

Wang L, Zhang M, Singhal A. Network security metrics: From known vulnerabilities to zero day attacks. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Springer Verlag. 2018. p. 450-469. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-04834-1_22

Network security metrics: From known vulnerabilities to zero day attacks

Abstract

Publication series

Funding

Access to Document

Persistent URL (handle)

Other files and links

Fingerprint

Cite this