重庆邮电大学学报(自然科学版)2017,Vol.29Issue(4):535-541,7.DOI:10.3979/j.issn.1673-825X.2017.04.017
基于攻击图的APT脆弱节点评估方法
Graph-based vulnerability assessment for APT attack
摘要
Abstract
The stealthy attack behaviors and long-term attack period of advanced persistent threats cause greater difficulty of attack detection.Based on that, the theory of attack graph is introduced into the research of anti-APT attack and the method for assessing vulnerable system nodes on the basis of attack graph is proposed.Firstly, the abnormal characteristics of APT attack is abstracted and defined to establish the Risk Attribute Attack Graph of targeted network system.Secondly, the behavior-vulnerability of system nodes are evaluated based on the characteristics of attack behaviors and the transmission-vulnerability of system nodes are evaluated based on the attack graph model.Finally, the overall-vulnerability is calculated to assess the vulnerable node.The experimental result shows that the proposed method can effectively quantify the characteristics of attack behavior and evaluate the vulnerability of system nodes.关键词
高级可持续性威胁(APT)攻击/攻击图/攻击特征/脆弱性评估Key words
advanced persistent threat(APT)attack/attack graph/attack features/vulnerability assessment分类
信息技术与安全科学引用本文复制引用
黄永洪,吴一凡,杨豪璞,李翠..基于攻击图的APT脆弱节点评估方法[J].重庆邮电大学学报(自然科学版),2017,29(4):535-541,7.基金项目
重庆市社会科学规划项目(2014SKZ26,2014YBFX103) (2014SKZ26,2014YBFX103)
国家科技支撑计划项目(2015BAH29F01)The Chongqing Social Science Planning Project(2014SKZ26,2014YBFX103) (2015BAH29F01)
The National Science and Technology Support Project(2015BAH29F01) (2015BAH29F01)
