Dynamically enabled defense effectiveness evaluation of a home Internet based on vulnerability analysis and attack layer measurement

Min Lei; Yu Yang; Nan Ma; Huizhong Sun; Chunru Zhou; Minyao Ma

首页> 外文期刊>Personal and Ubiquitous Computing >Dynamically enabled defense effectiveness evaluation of a home Internet based on vulnerability analysis and attack layer measurement

【24h】

Dynamically enabled defense effectiveness evaluation of a home Internet based on vulnerability analysis and attack layer measurement

机译：基于漏洞分析和攻击层测量的动态启用的家庭互联网防御效能评估

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Smart devices in a home Internet, such as routers and cameras, suffer malicious attacks from hackers on a daily basis. Defenders should change system states dynamically to improve the system's defense ability. To quantify evaluation of defense effectiveness, this paper proposes an improved vulnerability scoring method for home Internets based on the Information Security Technology Security Vulnerability Classification Guide, which calculates a vulnerability score. A higher vulnerability score indicates weaker defense ability. This method only considers defense. In actual system attack and defense, the actions of attackers should also be considered. Therefore, a measurement method for the attack layer based on the Markov chain (MC) is proposed. This method builds a model of an attack layer that can assess whether the defender's dynamic defense is effective by calculating the factor attack layer detection probability P_d. To optimize computing process, this paper introduces stochastic Petri nets (SPN) so that the parameters of MC transition matrix are easily gained. This model also obtains the minimum time period △t, during which the defender must change system states. If the change time period is greater than △t, attackers increase their probability of hacking into the home Internet system. Finally, the study concludes that if the vulnerability scores are lower after the system states are changed, △t will become longer, meaning the home Internet system has enhanced defense ability.

机译：家庭互联网中的智能设备（例如路由器和摄像机）每天都会遭受黑客的恶意攻击。防御者应动态更改系统状态，以提高系统的防御能力。为了量化防御有效性的评估，本文基于《信息安全技术安全漏洞分类指南》提出了一种改进的家庭互联网漏洞评分方法，该方法计算了漏洞评分。较高的脆弱性得分表示防御能力较弱。此方法仅考虑防御。在实际的系统攻防中，还应考虑攻击者的行动。因此，提出了一种基于马尔可夫链（MC）的攻击层测量方法。该方法建立了攻击层模型，可以通过计算因子攻击层检测概率P_d评估防御者的动态防御是否有效。为了优化计算过程，本文引入了随机Petri网（SPN），从而易于获得MC转移矩阵的参数。此模型还获得了防御者必须更改系统状态的最小时间段△t。如果更改时间段大于△t，则攻击者会增加其入侵家庭Internet系统的可能性。最后，研究得出的结论是，如果在系统状态更改后漏洞评分较低，则△t将变长，这意味着家用Internet系统具有增强的防御能力。

著录项

来源
《Personal and Ubiquitous Computing》 |2018年第1期|153-162|共10页
作者
Min Lei; Yu Yang; Nan Ma; Huizhong Sun; Chunru Zhou; Minyao Ma;
展开▼
作者单位

Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China,Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guiyang, Guizhou 550025, China,Jiangsu Engineering Center of Network Monitoring, Nanjing University of Information Science and Technology, Nanjing 210044, China;

Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China,Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guiyang, Guizhou 550025, China;

Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China,Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guiyang, Guizhou 550025, China;

Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China,Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guiyang, Guizhou 550025, China;

Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China,Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guiyang, Guizhou 550025, China;

School of Mathematics and Computer Science, Guizhou Education University, Guiyang 550018, China;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Home Internet; Dynamically enabled defense; Vulnerability score; Markov chain; Attack layer;

机译：家庭互联网;动态启用防御;漏洞评分;马尔可夫链攻击层;

相似文献

外文文献
中文文献
专利

1. An Agent Based Intelligent Dynamic Vulnerability Analysis Framework for Critical SQLIA Attacks: Intelligent SQLIA Vulnerability Analyzer Agent [J] . Jeya Mala Dharmalingam, M Eswaran International Journal of Intelligent Information Technologies . 2018,第3期

机译：基于代理的智能动态漏洞分析框架，用于关键SQLIA攻击：智能SQLIA漏洞分析仪代理
2. Deceptive Attack and Defense Game in Honeypot-Enabled Networks for the Internet of Things [J] . Quang Duy La, Tony Q. S. Quek, Jemin Lee, Internet of Things Journal, IEEE . 2016,第6期

机译：启用了蜜罐的物联网网络中的欺骗性攻击和防御游戏
3. Location privacy attacks and defenses in cloud-enabled internet of vehicles [J] . Jiawen Kang, Rong Yu, Xumin Huang, IEEE Wireless Communications . 2016,第5期

机译：支持云的车辆互联网中的位置隐私攻击和防御
4. Dynamically-Enabled Defense Effectiveness Evaluation in Home Internet Based on Vulnerability Analysis [C] . Ting Wang, Min Lei, Jingjie Chen, International Conference on Cloud Computing and Security . 2017

机译：基于漏洞分析的家庭互联网动态启用防御效能评估
5. Modeling, analysis and defense strategies against Internet attacks. [D] . Kim, Jonghyun. 2005

机译：针对Internet攻击的建模，分析和防御策略。
6. Performance Evaluation and Validation of QCM (Query Control Mechanism) for QoS-Enabled Layered-Based Clustering for Reactive Flooding in the Internet of Things [O] . Fawad Ali Khan, Rafidah Md Noor, Miss Laiha Mat Kiah, 2020

机译：物联网中基于QoS的基于分层的集群的QCM（查询控制机制）的性能评估和验证
7. EEG Signal Discrimination using Non-linear Dynamics in the EMD Domain S. M. Shafiul Alam,S. M. Shafiul Alam,Aurangozeb, and Syed TarekShahriar Abstract—An EMD-chaos based approach is proposed todiscriminate EEG signals corresponding to healthy persons,and epileptic patients during seizure-free intervals and seizureattacks. An electroencephalogram (EEG) is first empiricallydecomposed to intrinsic mode functions (IMFs). The nonlineardynamics of these IMFs are quantified in terms of the largestLyapunov exponent (LLE) and correlation dimension (CD).This chaotic analysis in EMD domain is applied to a large groupof EEG signals corresponding to healthy persons as well asepileptic patients (both with and without seizure attacks). It isshown that the values of the obtained LLE and CD exhibitfeatures by which EEG for seizure attacks can be clearlydistinguished from other EEG signals in the EMD domain.Thus, the proposed approach may aid researchers in developingeffective techniques to predict seizure activities. Index Terms—Electroencephalogram (EEG), empiricalmode decomposition (EMD), largest Lyapunov exponent (LLE),correlation dimension (CD), epileptic seizures. The Authors are with the Electrical and Electronic EngineeringDepartment, Bangladesh University of Engineering and Technology,Dhaka-1000, Bangladesh (e-mail: imamul@eee.buet.ac.bd) PDF Cite: S. M. Shafiul Alam,S. M. Shafiul Alam,Aurangozeb, and Syed Tarek Shahriar, "EEG Signal Discrimination using Non-linear Dynamics in the EMD Domain," International Journal of Computer and Electrical Engineering vol. 4, no. 3, pp. 326-330, 2012. PREVIOUS PAPER Perception of Emotions Using Constructive Learningthrough Speech NEXT PAPER Physical Layer Impairments Aware OVPN Connection Selection Mechanisms Copyright © 2008-2013. International Association of Computer Science and Information Technology Press (IACSIT Press) [O] . S. M. Shafiul Alam, Syed TarekShahriar 2012

机译：EEG信号在EMD域S. S. Shafiul Alam，S中的非线性动力学使用非线性动力学。 M. Shafiul Alam，Aurangozeb和Syed Tarekshahriar摘要 - 基于EMD Chaos的方法，提出了对应于健康人的EEG信号，癫痫发作期间的癫痫患者和Seizureattacks。脑电图（EEG）首先被凭经上分解为内在模式功能（IMF）。这些IMF的非线性动力学在最大范围的指数（LLE）和相关尺寸（CD）方面是量化的。本域中的混沌分析应用于与健康人相对应的大型脑电图（Asepileptic患者）（两者都有癫痫发作）。因此，所获得的LLE和CD表展的价值可以从EMD领域的其他EEG信号中清晰地区分脑电图的表达展示。本拟议的方法可以帮助研究人员以预测癫痫发作的癫痫发作技术。索引术语 - 脑电图（EEG），仿真态分解（EMD），最大的Lyapunov指数（LLE），相关维度（CD），癫痫发作。作者与电气电子和电子工程公司，孟加拉国工程和技术大学，孟加拉国达卡 - 1000（电子邮件：imamul@eee.buet.ac.bd）pdf cite：s. m. shafiul Alam，s。 M. Shafiul Alam，Aurangozeb和Syed Tarek Shahriar，“EEG信号歧视在EMD领域的非线性动态，”计算机电气工程卷国际杂志。 4，不。 3，pp。326-330,2012，上一篇论文对情绪的看法，使用建设性的学习言论下一篇论文物理层障碍意识到OVPN连接选择机制版权所有©2008-2013。国际计算机科学与信息技术协会出版社（IACSIT Press）
8. Defense Logistics: Improved Analysis and Cost Data Needed to Evaluate the Cost-Effectiveness of Performance Based Logistics [R] . 2008

机译：国防物流：改进分析和成本数据，以评估基于绩效的物流的成本效益

Dynamically enabled defense effectiveness evaluation of a home Internet based on vulnerability analysis and attack layer measurement

摘要

著录项

相似文献

相关主题

期刊订阅