Model-Based Quantitative Network Security Metrics: A Survey

Ramos, Alex; Lazar, Marcella; Filho, Raimir Holanda; Rodrigues, Joel J. P. C.

doi:10.1109/comst.2017.2745505

Cited by 72 publications

(54 citation statements)

References 120 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The PageRank algorithm is a commonly used webpage ranking algorithm. It has been widely used in social network analysis [32], transportation planning [33], and network security [34]. The PageRank algorithm takes the number and quality of hyperlinks between web pages as the main factors to analyze the importance of a web page [35].…”

Section: Importance Evaluation Based On the Pagerank Algorithmmentioning

confidence: 99%

Social Sensing of the Imbalance of Urban and Regional Development in China Through the Population Migration Network around Spring Festival

et al. 2020

View full text Add to dashboard Cite

Regional development differences are a universal problem in the economic development process of countries around the world. In recent decades, China has experienced rapid urban development since the implementation of the reform and opening-up policy. However, development differs across regions, triggering the migration of laborers from underdeveloped areas to developed areas. The interaction between regional development differences and Spring Festival has formed the world’s largest cyclical migration phenomenon, Spring Festival travel. Studying the migration pattern from public spatiotemporal behavior can contribute to understanding the differences in regional development. This paper proposes a geospatial network analytical framework to quantitatively characterize the imbalance of urban/regional development based on Spring Festival travel from the perspectives of complex network science and geospatial science. Firstly, the urban development difference is explored based on the intercity population flow difference ratio, PageRank algorithm, and attractiveness index. Secondly, the community detection method and rich-club coefficient are applied to further observe the spatial interactions between cities. Finally, the regional importance index and attractiveness index are used to reveal the regional development imbalance. The methods and findings can be used for urban planning, poverty alleviation, and population studies.

show abstract

Section: Importance Evaluation Based On the Pagerank Algorithmmentioning

confidence: 99%

Social Sensing of the Imbalance of Urban and Regional Development in China Through the Population Migration Network around Spring Festival

et al. 2020

View full text Add to dashboard Cite

show abstract

“…The cybersecurity metrics axis aims to rigorously define metrics to measure and quantify cybersecurity from a holistic perspective, and therefore provides conceptual guidance to the other two axes because those quantitative models are often centered at some metrics. Along this axis, significant progress has been made [94,104,89,23,18,19,80,22].…”

Section: First-principle Modeling and Analysismentioning

confidence: 99%

“…Despite its clear importance, the problem is largely open as evidenced by the fact that it has been constantly listed as one of the hard problems [27,108,87]. Recently, the problem has received systematic attention [94,104,89,23,18,19,80,22]. In Cybersecurity Dynamics [128,94], the following five kinds of cybersecurity metrics have been proposed to systematically describe the evolution of the global cybersecurity state [94]: (i) metrics for describing a network including its configurations; (ii) metrics for describing systems and human vulnerabilities; (iii) metrics for describing defenses employed to protect networks; (iv) metrics for describing cyber attacks (i.e., threat models); and (v) metrics for describing the global cybersecurity state or cybersecurity situational awareness.…”

Section: Cybersecurity Metricsmentioning

confidence: 99%

Cybersecurity Dynamics: A Foundation for the Science of Cybersecurity

2019

Proactive and Dynamic Network Defense

View full text Add to dashboard Cite

Cybersecurity Dynamics is new concept that aims to achieve the modeling, analysis, quantification, and management of cybersecurity from a holistic perspective, rather than from a building-blocks perspective. It is centered at modeling and analyzing the attack-defense interactions in cyberspace, which cause a "natural" phenomenon-the evolution of the global cybersecurity state. In this Chapter, we systematically introduce and review the Cybersecurity Dynamics foundation for the Science of Cybersecurity. We review the core concepts, technical approaches, research axes, and results that have been obtained in this endeavor. We outline a research roadmap towards the ultimate research goal, including a systematic set of technical barriers.

show abstract

“…Behi et al [4] provided a structure for quantitation of network security and prioritization of significant security metrics. In addition, Ramos et al [5] presented a deep survey of the state-ofthe-art of existing modelbased security metric from the aspects of classifications, advantages/disadvantages, characteristics, and open research issues.…”

Section: Related Workmentioning

confidence: 99%

New Insights into Approaches to Evaluating Intention and Path for Network Multistep Attacks

Liu

Yang³

et al. 2018

Mathematical Problems in Engineering

View full text Add to dashboard Cite

The attack graph (AG) is an abstraction technique that reveals the ways an attacker can use to leverage vulnerabilities in a given network to violate security policies. The analyses developed to extract security-relevant properties are referred to as AG-based security evaluations. In recent years, many evaluation approaches have been explored. However, they are generally limited to the attacker's "monotonicity" assumption, which needs further improvements to overcome the limitation. To address this issue, the stochastic mathematical model called absorbing Markov chain (AMC) is applied over the AG to give some new insights, namely, the expected success probability of attack intention (EAIP) and the expected attack path length (EAPL). Our evaluations provide the preferred mitigating target hosts and the vulnerabilities patching prioritization of middle hosts. Tests on the public datasets DARPA2000 and Defcon's CTF23 both verify that our evaluations are available and reliable.

show abstract

Model-Based Quantitative Network Security Metrics: A Survey

Cited by 72 publications

References 120 publications

Social Sensing of the Imbalance of Urban and Regional Development in China Through the Population Migration Network around Spring Festival

Social Sensing of the Imbalance of Urban and Regional Development in China Through the Population Migration Network around Spring Festival

Cybersecurity Dynamics: A Foundation for the Science of Cybersecurity

New Insights into Approaches to Evaluating Intention and Path for Network Multistep Attacks

Contact Info

Product

Resources

About