An Intelligent Approach for Security Management of an Enterprise Network Using Planner

Ghosh, Nirnay; Ghosh, Soumya K.

doi:10.1007/978-3-642-11676-6_9

Cited by 2 publications

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It executes Planner at the lowlevel by performing automatic modification of fact.pddl. In [26], the authors have defined various data structures used in these algorithms. A brief description of the algorithms has Host3) 3)))) also been given.…”

Section: Attack Path Enumeration Algorithmmentioning

confidence: 99%

See 1 more Smart Citation

A planner-based approach to generate and analyze minimal attack graph

Ghosh

2010

Appl Intell

Self Cite

View full text Add to dashboard Buy / Rent full text

In the present scenario, even well administered networks are susceptible to sophisticated cyber attacks. Such attack combines vulnerabilities existing on different systems/services and are potentially more harmful than single point attacks. One of the methods for analyzing such security vulnerabilities in an enterprise network is the use of attack graph. It is a complete graph which gives a succinct representation of different attack scenarios, depicted by attack paths. An attack path is a logical succession of exploits, where each exploit in the series satisfies the preconditions for subsequent exploits and makes a causal relationship among them. Thus analysis of the attack graph may help in assessing network security from hackers' perspective. One of the intrinsic problems with the generation and analysis of such a complete attack graph is its scalability. In this work, an approach based on Planner, a special purpose search algorithm from artificial intelligence domain, has been proposed for time-efficient, scalable representation of the attack graphs. Further, customized algorithms have been developed for automatic generation of attack paths (using Planner as a low-level module). The analysis shows that generation of attack graph using the customized algorithms can be done in polynomial time. A case study has also been presented to demonstrate the efficacy of the proposed methodology.

show abstract

Section: Attack Path Enumeration Algorithmmentioning

confidence: 99%

“…Since each solution is an attack path, a set of all acyclic paths may be obtained. A customized attack path enumeration algorithm (refer to Algorithm 1) given in [26] is used in this paper. It executes Planner at the lowlevel by performing automatic modification of fact.pddl.…”

Section: Attack Path Enumeration Algorithmmentioning

confidence: 99%

A planner-based approach to generate and analyze minimal attack graph

Ghosh

2010

Appl Intell

Self Cite

View full text Add to dashboard Buy / Rent full text

show abstract

An Intelligent Approach for Security Management of an Enterprise Network Using Planner

Cited by 2 publications

References 25 publications

A planner-based approach to generate and analyze minimal attack graph

A planner-based approach to generate and analyze minimal attack graph

Contact Info

Product

Resources

About