• DocumentCode
    1936553
  • Title

    Risk assessment of information system using the shell theory and attack graph

  • Author

    Cheng, Xiaorong ; Zhang, Zhenshan

  • Author_Institution
    Sch. of Comput. Sci. & Technol., North China Electr. Power Univ., Baoding, China
  • Volume
    5
  • fYear
    2010
  • fDate
    9-11 July 2010
  • Firstpage
    537
  • Lastpage
    541
  • Abstract
    In order to improve the accuracy of risk assessment of corporate networks, the paper introduces the concept of network shell into the field of security risk assessment. After analyzing the actual needs of corporate networks, we give the risk assessment model of network shell, then based on this model we analyze the application of network shell and give the algorithm to repair the network shell through the attack graph. After that, a calculation method of the integrated value of network shell is given. Finally, an example is given to verify the validity of assessment model.
  • Keywords
    computer network security; information systems; network theory (graphs); risk management; attack graph; corporate networks; information system; netowrk shell theory; security risk assessment model; attack graph; network shell; risk assessment; vulnerability;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on
  • Conference_Location
    Chengdu
  • Print_ISBN
    978-1-4244-5537-9
  • Type

    conf

  • DOI
    10.1109/ICCSIT.2010.5563917
  • Filename
    5563917
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1936553