Title :
Scalable Patch Management Using Evolutionary Analysis of Attack Graphs
Author :
Danforth, Melissa
Author_Institution :
Bakersfield Dept. of Comput. Sci., California State Univ., Bakersfield, CA
Abstract :
Network administrators must not only consider the vulnerabilities on each individual machine, but also how those vulnerabilities interact in a networked environment. Attack graphs are a tool to determine these interactions. They allow an administrator to visualize paths an attacker may take to compromise the network. Two critical issues that are often overlooked in analyzing attack graphs are the scalability of the method to large networks and the ability of the administrator to customize the method to the needs of his particular network. This work provides a method based on a multi-objective genetic algorithm to analyze attack graph and determine a minimum set of patches. The method is able to scale to networks containing several hundred machines.
Keywords :
computer network management; genetic algorithms; graph theory; telecommunication security; attack graph; evolutionary analysis; multiobjective genetic algorithm; network administration; scalable patch management; Algorithm design and analysis; Application software; Computer network management; Conference management; Database machines; Genetic algorithms; Machine learning; Network servers; Scalability; Tree graphs; Evolutionary analysis; attack graphs; patch management;
Conference_Titel :
Machine Learning and Applications, 2008. ICMLA '08. Seventh International Conference on
Conference_Location :
San Diego, CA
Print_ISBN :
978-0-7695-3495-4
DOI :
10.1109/ICMLA.2008.80
