An Approach for Network Security Analysis Using Logic Exploitation Graph

CC
CIT
2007
7th IEEE International Conference on Computer and Information Technology (CIT 2007)
Abstract - An Approach for Network Security Analysis Using Logic Exploitation Graph

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Han-dong Mao Articles by Wei-Ming Zhang

7th IEEE International Conference on Computer and Information Technology (CIT 2007)

Aizu-Wakamatsu City, Fukushima, Japan

October 16-October 19

ISBN: 0-7695-2983-6

	ASCII Text	x
	Han-dong Mao, Wei-Ming Zhang, "An Approach for Network Security Analysis Using Logic Exploitation Graph," Computer and Information Technology, International Conference on, pp. 761-766, 7th IEEE International Conference on Computer and Information Technology (CIT 2007), 2007.

	BibTex	x
	@article{ 10.1109/CIT.2007.129, author = {Han-dong Mao and Wei-Ming Zhang}, title = {An Approach for Network Security Analysis Using Logic Exploitation Graph}, journal ={Computer and Information Technology, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2983-6}, pages = {761-766}, doi = {http://doi.ieeecomputersociety.org/10.1109/CIT.2007.129}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer and Information Technology, International Conference on TI - An Approach for Network Security Analysis Using Logic Exploitation Graph SN - 0-7695-2983-6 SP761 EP766 A1 - Han-dong Mao, A1 - Wei-Ming Zhang, PY - 2007 VL - 0 JA - Computer and Information Technology, International Conference on ER -

Han-dong Mao, National Univ. of Defense Technology

Wei-Ming Zhang, National Univ. of Defense Technology

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CIT.2007.129

Recent work in network security has focused on the fact that combinations of exploits are the typical means by which an attacker breaks into a network. Researchers have proposed a variety of graph-based analysis approach, and there is often a lack of logical formalism. This paper describes a new approach to represent and analyze network vulnerability. We propose logical exploitation graph, which directly illustrate logical dependencies among exploitation goals and network configure. Our logical exploitation graph generation tool builds upon LEG-NSA, a network security analyzer based on Prolog logical programming. We demonstrate how to reason all exploitation paths using bottom-up and top-down evaluation algorithms in the Prolog logic- programming engine. We show experimental evidence that our logical exploitation graph generation algorithm is very efficient.

Citation:

Han-dong Mao, Wei-Ming Zhang, "An Approach for Network Security Analysis Using Logic Exploitation Graph," cit, pp.761-766, 7th IEEE International Conference on Computer and Information Technology (CIT 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.