Quantitative Evaluation of Cyber-Attacks on a Hypothetical School Computer Network

Abiodun Ayodeji; Adeyemi A. Adekoya; Akinjide A. Akinola; Ayoade O. Kuye

文献导航

搜索文章

搜索思路

钛学术文献服务平台 \
学术期刊 \
综合期刊 \
其它期刊 \
信息安全（英文）期刊 \
Quantitative Evaluation of Cyber-Attacks on a Hypothetical School Computer Network

Quantitative Evaluation of Cyber-Attacks on a Hypothetical School Computer Network

作者：

Abiodun Ayodeji Adeyemi A. Adekoya Akinjide A. Akinola Ayoade O. Kuye

基本信息来源于合作网站，原文需代理用户跳转至来源网站获取

Cyber-Attack

Quantitative

VULNERABILITY

Assessment

ATTACK

Trees

RETURN

ATTACK

Countermeasures

摘要：

This paper presents the attack tree modeling technique of quantifying cyber-attacks on a hypothetical school network system. Attack trees are constructed by decomposing the path in the network system where attacks are plausible. Considered for the network system are two possible network attack paths. One network path represents an attack through the Internet, and the other represents an attack through the Wireless Access Points (WAPs) in the school network. The probabilities of success of the events, that is, 1) the attack payoff, and 2) the commitment of the attacker to infiltrate the network are estimated for the leaf nodes. These are used to calculate the Returns on Attacks (ROAs) at the Root Nodes. For Phase I, the “As Is” network, the ROA values for both attack paths, are higher than 7 (8.00 and 9.35 respectively), which are high values and unacceptable operationally. In Phase II, countermeasures are implemented, and the two attack trees reevaluated. The probabilities of success of the events, the attack payoff and the commitment of the attacker are then re-estimated. Also, the Returns on Attacks (ROAs) for the Root Nodes are re-assessed after executing the countermeasures. For one attack tree, the ROA value of the Root Node was reduced to 4.83 from 8.0, while, for the other attack tree, the ROA value of the Root Node changed to 3.30 from 9.35. ROA values of 4.83 and 3.30 are acceptable as they fall within the medium value range. The efficacy of this method whereby, attack trees are deployed to mitigate computer network risks, as well as using it to assess the vulnerability of computer networks is quantitatively substantiated.

内容分析

关键词云

关键词热度

相关文献

推荐文献

根据相关规定，获取原文需跳转至原文服务方进行注册认证身份信息

完成下面三个步骤操作后即可获取文献，阅读后请点击下方页面【继续获取】按钮

钛学术文献服务平台

学术出版新技术应用与公共服务实验室出品

原文合作方

获取文献流程

1.访问原文合作方请等待几秒系统会自动跳转至登录页，首次访问请先注册账号，填写基本信息后，点击【注册】

2.注册后进行实名认证，实名认证成功后点击【返回】

3.检查邮箱地址是否正确，若错误或未填写请填写正确邮箱地址，点击【确认支付】完成获取，文献将在1小时内发送至您的邮箱

*若已注册过原文合作方账号的用户，可跳过上述操作，直接登录后获取原文即可

点击【获取原文】按钮，跳转至合作网站。

首次获取需要在合作网站进行注册。

注册并实名认证，认证后点击【返回】按钮。

确认邮箱信息，点击【确认支付】，订单将在一小时内发送至您的邮箱。

* 若已经注册过合作网站账号，请忽略第二、三步，直接登录即可。

期刊分类
期刊（年）
期刊（期）
期刊推荐

其它

信息安全（英文）2021 信息安全（英文）2020 信息安全（英文）2019 信息安全（英文）2018 信息安全（英文）2017 信息安全（英文）2015 信息安全（英文）2014 信息安全（英文）2013 信息安全（英文）2012 信息安全（英文）2011 信息安全（英文）2010

信息安全（英文）2019年第4期信息安全（英文）2019年第3期信息安全（英文）2019年第2期信息安全（英文）2019年第1期

按字母查找期刊：

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
其他

联系合作广告推广: shenyukuan@paperpass.com

篇名	Quantitative Evaluation of Cyber-Attacks on a Hypothetical School Computer Network
来源期刊	信息安全(英文)	学科	医学
关键词	Cyber-Attack Quantitative VULNERABILITY Assessment ATTACK Trees RETURN on ATTACK Countermeasures
年，卷（期）	xxaqyw_2019,（3）	所属期刊栏目
研究方向		页码范围	103-116
页数	14页	分类号	R73
字数		语种
DOI