...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Systems Journal, IEEE >Multilayered Impact Evaluation Model for Attacking Missions
【24h】

Multilayered Impact Evaluation Model for Attacking Missions

机译:攻击任务的多层影响评估模型

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

In practical application scenarios, direct attacking on a target system to test the impact of attack methods may expose an attacker's intent and result in the difficulty in evaluating the attack method. Therefore, it is essential to design a controllable target range for testing and evaluating the attack impact. In this paper, we construct an attack test platform in order to evaluate the attack impact from different attack tools or the combinations of these attack tools. According to “vulnerability–asset–service–mission” (VASM) relationship, we design a multilayered evaluation model VASM, which includes a four-layer information structure: vulnerability layer, asset layer, service layer, and mission layer, from bottom to top. Considering that each asset may have one or more vulnerabilities, we score the attack impact on each asset based on attack probability and vulnerability and calculate the operational capacity of an asset after an attack. Since services may be provided jointly by one or more assets, we calculate the attack impact on services utilizing the dependencies among assets. The attack impact can be transmitted layer by layer from bottom to top through the dependencies among nodes. Finally, we can obtain the attack impact on missions. We use an actual logistics management and tracking system as the target range and verify the effectiveness and validity of our evaluation model, i.e., VASM, on goods delivery. Experimental results show that VASM cannot only assess the attack impact directly but also conform to the actual situations accurately.
机译:在实际应用场景中,直接攻击目标系统以测试攻击方法的影响可能会暴露攻击者的意图,并导致评估攻击方法的难度。因此,设计可控制的目标范围以测试和评估攻击影响至关重要。在本文中,我们构建了一个攻击测试平台,以评估来自不同攻击工具或这些攻击工具组合的攻击影响。根据“脆弱性-资产-服务-任务”(VASM)的关系,我们设计了一个多层评估模型VASM,该模型包括四层信息结构:从下到上的漏洞层,资产层,服务层和任务层。考虑到每个资产可能具有一个或多个漏洞,我们根据攻击概率和脆弱性对攻击对每个资产的影响进行评分,并计算出攻击后资产的运营能力。由于服务可能是由一个或多个资产共同提供的,因此我们利用资产之间的依赖性来计算对服务的攻击影响。攻击影响可以通过节点之间的依赖关系从下到上逐层传递。最后,我们可以获得攻击对任务的影响。我们使用实际的物流管理和跟踪系统作为目标范围,并验证我们的评估模型(即VASM)对货物交付的有效性和有效性。实验结果表明,VASM不仅可以直接评估攻击影响,而且可以准确地符合实际情况。

著录项

  • 来源
    《Systems Journal, IEEE》 |2016年第4期|1304-1315|共12页
  • 作者

    Yan Sun; Tin-Yu Wu; Xinwei Liu; Mohammad S. Obaidat;

  • 作者单位

    Beijing Key Laboratory of Intelligent Telecommunication Software and Multimedia, Beijing University of Posts and Telecommunications, Beijing, China;

    Department of Computer Science and Information Engineering, National Ilan University, I-Lan, Taiwan;

    Beijing Key Laboratory of Intelligent Telecommunication Software and Multimedia, Beijing University of Posts and Telecommunications, Beijing, China;

    Department of Computer Science and Software Engineering, Monmouth University, West Long Branch, NJ, USA;

  • 收录信息
  • 原文格式 PDF
  • 正文语种 eng
  • 中图分类
  • 关键词

    Complexity theory; Probability; Monitoring; Computational modeling; Measurement; Sun; Software;

    机译:复杂性理论;概率;监测;计算建模;测量;Sun;软件;

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号