International Journal of Information and Communication Technology Research
مجله بین المللی ارتباطات و فناوری اطلاعات
International Journal of Information and Communication Technology Research
Engineering & Technology
http://ijict.itrc.ac.ir
1
admin
2251-6107
2783-4425
doi
1652
25391
en
jalali
1396
6
1
gregorian
2017
9
1
9
3
online
1
fulltext
other
An Attack Graph Based Method for Predictive Risk Evaluation of Zero-Day Attacks
فناوری اطلاعات
Information Technology
پژوهشي
Research
Performing risk assessment of computer networks is inevitable in the process of network hardening. To do efficient attack prevention, risk evaluation must be done in an accurate and quantitative manner. Such risk assessment requires thorough understanding of attack’s causes or vulnerabilities and their related characteristics. But one major problem is that, there are vulnerabilities that are known by attackers but there is no information about them in databases like NVD (National Vulnerability Database). Such vulnerabilities are referred to as unknown or zero day attacks. Existing standards like NVD ignore the effect of unknown attacks in risk assessment of computer networks. In this paper, by defining some attack graph based security metrics, we proposed an innovative method for risk evaluation of multi-step Zero-Day Attacks. Proposed method by predicting the intrinsic features of Zero-Day attacks makes their risk estimation possible. Considering the effect of Temporal features of vulnerabilities have made our approach a Dynamic Risk Estimator
Zero day attack, CVSS, Vulnerability, Risk Assessment, Security Metic, Network Hardening, Intrusion Prevention
7
16
http://ijict.itrc.ac.ir/browse.php?a_code=A-10-654-2&slc_lang=other&sid=1
Marjan
Keramati
Keramati_marjan@semnan.ac.ir
100319475328460031
100319475328460031
Yes