International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI Indexed

International Journal of Network Security & Its Applications (IJNSA) - ERA, WJCI Indexed

ISSN: 0974 - 9330 (Online); 0975 - 2307 (Print)

Webpage URL: https://airccse.org/journal/ijnsa.html

Attack Graph-Based Risk Assessment and Optimisation Approach

Mohammed Alhomidi and Martin Reed, University of Essex, UK

Abstract

Attack graphs are models that offer significant capabilities to analyse security in network systems. An attack graph allows the representation of vulnerabilities, exploits and conditions for each attack in a single unifying model. This paper proposes a methodology to explore the graph using a genetic algorithm (GA). Each attack path is considered as an independent attack scenario from the source of attack to the target. Many such paths form the individuals in the evolutionary GA solution. The population-based strategy of a GA provides a natural way of exploring a large number of possible attack paths to find the paths that are most important. Thus unlike many other optimisation solutions a range of solutions can be presented to a user of the methodology.

Keywords

Attack Graph, Risk Assessment, Genetic Algorithm

Original Source URL: https://airccse.org/journal/nsa/6314nsa03.pdf

Volume URL: https://airccse.org/journal/jnsa14_current.html