Active vulnerability assessment of computer networks by simulation of complex remote attacks

Author

Kotenko, Igor

Author_Institution

St. Petersburg Inst. for Informatics & Autom., Liniya, Russia

fYear

2003

fDate

20-23 Oct. 2003

Firstpage

40

Lastpage

47

Abstract

The paper describes the formal approach and software tool "Attack Simulator" intended for active vulnerability assessment of computer network security policy at the stages of design and deployment of network security systems. The suggested approach is based on stochastic grammar-based models of attacks and is realized via automatic imitation of remote computer network attacks of different complexity. The paper characterizes the Attack Simulator architecture and the processes of generating malicious actions against computer network model and real-life computer networks. The results of experiments that demonstrate the Attack Simulator efficiency are described in detail.

Keywords

computer networks; digital simulation; software tools; telecommunication security; Attack Simulator; active vulnerability assessment; complex remote attacks; computer network security; computer networks; network attacks; software tool; Analytical models; Communication system security; Computational modeling; Computer networks; Computer security; Computer simulation; Data security; Software tools; Stochastic processes; Taxonomy;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Networks and Mobile Computing, 2003. ICCNMC 2003. 2003 International Conference on

Print_ISBN

0-7695-2033-2

Type

conf

DOI

10.1109/ICCNMC.2003.1243025

Filename

1243025