Visible to the public Attack Intent Analysis Method Based on Attack Path Graph

TitleAttack Intent Analysis Method Based on Attack Path Graph
Publication TypeConference Paper
Year of Publication2018
AuthorsLi, Shijin, Zhu, Minchen, Qiu, Yanbin
Conference NameProceedings of the 8th International Conference on Communication and Network Security
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-6567-3
KeywordsAttack Graphs, Attack intention, Attack path graph, Chained Attacks, composability, Critical assets, Metrics, pubcrawl, resilience, Resiliency
Abstract

At present, with the increase of automated attack tools and the development of the underground industrial chain brought by network attack, even well-managed network is vulnerable to complex multi-step network attack, which combines multiple network vulnerabilities and uses the causal relationship between them to achieve the attack target. The detection of such attack intention is very difficult. Therefore, in order to solve the problem that the real attack intention of the attackers in complex network is difficult to be recognized, this paper proposes to assume the possible targets in the network according to the important asset information in the network. By constructing the hierarchical attack path graph, the probability of each hypothetical attack intention target is calculated, and the real attack intention and the most likely attack path of the attacker are deduced. The hierarchical attack path graph we use can effectively overcome the cognitive difficulties caused by network complexity and large scale, and can quantitatively and qualitatively analyze the network status. It is of great importance to make the protection and strategy of network security.

URLhttps://dl.acm.org/citation.cfm?doid=3290480.3290502
DOI10.1145/3290480.3290502
Citation Keyli_attack_2018