Yi-xian LIU,De-jun MU

DOI: https://doi.org/10.3969/j.issn.1673-629X.2018.04.029

2018-01-01

Abstract:With the development of network technology,security events continually emerge,so how to achieve the overall security protec-tion is an important issue.As an effective protection method to information system,the security assessment can provide the comprehensive support of security technology for information system compared with traditional security protection methods.By analyzing the impacts on the system's asset vulnerability to its confidentiality,integrity and availability,the scores are assigned by CVSS (common vulnerability scoring system),and then the assessment of network information system is achieved with the weight of the attributes.A simple network information system is constructed in the experiment and the scanner is used in the system equipment to find the vulnerability information of assets.The basic score data is obtained from the NVD for the calculation of risk assets value which is transformed for qualitative assess-ment.The experiment verifies the feasibility and the effectiveness of the proposed method.

Huiying Lv,Yuanda Cao

DOI: https://doi.org/10.1109/ISISE.2008.109

2008-01-01

Abstract:A risk situation evaluation model for network security is proposed based on analyzing security threat status. This method first perceived and identified the characteristics of critical risk factors, such as asset, vulnerability and threat, from multi-security-sensors. Then a quantitative evaluation algorithm was presented to estimate current threats and potential threats. By analyzing their threat degree, the real-time status and dynamic evolvement trend of security risk was revealed. Sequentially, the security administrator can comprehend the situation about both the single entity and the overall network then timely and effectively make security decisions. Finally this method was illustrated and validated in an emulated network environment. © 2008 IEEE.

Sun Yang,Xiong Wei

DOI: https://doi.org/10.1109/icsess.2017.8342948

2017-01-01

Abstract:The vulnerability of network or information system is the inherent reason for the existence of security risks and security risks. External threats exploit the vulnerability of the network or information system to launch attacks. Therefore, in the field of network security risk assessment technology, security vulnerability analysis takes an important position and is the basis for a network security risk assessment. This paper mainly reviews the research status of network security vulnerability analysis methods, network security quantitative evaluation method and real-time evaluation method of network security.

Xiang GAO,Yue-fei ZHU,Sheng-li LIU,Jin-long FEI,Long LIU

2013-01-01

Abstract:Aiming at the complex in the process of network security risk assessment, the asset, vulnerability and threat were used as the major factors in security assessment to establish the hierarchical index system for security assessment. The concept of credibility was introduced, and the security risk assessment model and fuzzy reasoning algorithm based on fuzzy Petri net were also proposed, making use of fuzzy Petri nets method joined together with the AHP to analyze the question, and combining qualitative analysis and quantitative analysis together. The example analysis shows that the ob-tained results are more accurate and scientific compared with traditional assessment methods. Therefore, this method is an effective network system risk assessment method.

WANG Wei,LI Chun-ping,LI Jian-bin

DOI: https://doi.org/10.16208/j.issn1000-7024.2007.14.060

2007-01-01

Abstract:Safe field in the information,the risk assessment is foundation and premises that builds up the safe system of the information system,but the risk assessment method rises to the usefulness of the assessment prominent function.The risk assessment method contain a lot of kinds,each method have it the place of the shortage.The risk assessment method adopted threat tree model and analytical hierarchy process that method combine together,made use of two kinds of vantages that assessment method,made up the shortage of the one risk assessment method,the aim is search into a kind of more valid,more reasonable and more accurate risk assessment method.

Chen,Gang Chen

DOI: https://doi.org/10.1109/aiipcc57291.2022.00077

2022-01-01

Abstract:With the rapid development and popular utilization of computer network system, the proportion of attacks against computer network system has been increasing year by year. The traditional security vulnerability assessment method only evaluates individual vulnerabilities in isolation, and the assessment results do not reflect the degree of impact of vulnerabilities on the whole network. To address this problem this paper proposes a computer network system security assessment method, which uses the CVSSv3 evaluation index to assess vulnerabilities based on vulnerability association graph and risk matrix, while taking into account the association relationship between the fore-order vulnerability nodes, back-order vulnerability nodes and the vulnerability itself. The vulnerability correlation hazard calculated by the method can accurately reflect the degree of impact of the vulnerability on the whole computer network system, and the accuracy and effectiveness of the method is proved through experiments.

Mixia Liu,Dongmei Yu,Qiuyu Zhang,Honglei Zhu

DOI: https://doi.org/10.1109/IWASID.2007.373676

2007-01-01

Abstract:With the development of computer networks, the spread of malicious network activities poses great risks to the operational integrity of many organizations and imposes heavy economic burdens on life and health. Therefore, risk assessment is very important in network security management and analysis. Network security situation analysis not only can describe the current state but also project the next behavior of the network. Alerts coming from IDS, Firewall, and other security tools are currently growing at a rapid pace. Large organizations are having trouble keeping on top of the current state of their networks. In this paper, we described cyberspace situational awareness from formal and visual methods. Next, to make security administrator comprehend security situation and project the next behaviors of the whole network, we present using parallel axes view to give expression clearly of security events correlations. At last, we concluded that visualization is an important research of risk evaluation and situation analysis of network.

Ming Jiang,Ming Li,Mengchen Cai,Yuan Fang

DOI: https://doi.org/10.1088/1742-6596/1744/3/032189

2021-02-01

Journal of Physics: Conference Series

Abstract:Abstract The emergence of the Internet has had a huge impact on people’s lives and work. In the 21st century, human society has fully entered the Internet age. Through the Internet, people can realize zero-distance, data transmission and information sharing without time and space restrictions. The network has become an important tool for modern people to obtain information, disseminate and share information, and has been applied to almost all fields, from scientific research to astronomy, national defense, medical care, small to home entertainment, production office, web browsing must use the network. However, network security issues have always restricted the application of the network. The network has the characteristics of openness, complexity and speciality. Some lawless elements will steal other people’s information and finance through cyber attacks. The network security problem cannot be ignored. It is important to do a multi-dimensional dynamic risk assessment of network security. This paper will conduct research and analysis on the key technologies of network security multi-dimensional dynamic risk assessment.

XiaoLin Cui,Xiaobin Tan,Yong Zhang,Hongsheng Xi

DOI: https://doi.org/10.1109/CSSE.2008.949

2008-01-01

Abstract:Risk assessment is a very important tool to acquire a present and future security status of the network information system. Many risk assessment approaches consider the present system security status, while the future security status, which also has an impact on assessing the system risk, is not taken into consideration. In this paper we propose a novel risk assessment model based on Markov game theory. In this model, all of the possible risk in the future will impact on the present risk assessment. The farther away from now, the smaller impact on the risk assessment it has. After acquiring the system security status, we proposed an automatic generated reinforcement scheme which will provide a great convenience to the system administrator. A software tool is developed to demonstrate the performance of the risk assessment of a network information system and a simulation example shows the effectiveness of the proposed model. © 2008 IEEE.

Shi Jian,Guo Shanqing,Xie Li

DOI: https://doi.org/10.3321/j.issn:1002-8331.2006.01.034

2006-01-01

Abstract:Risk assessment is critical to establishing an effective Information Security Management System and it is the foundation of information system security systematism.After introducing information security risk assessment briefly,this paper provides a real-time risk assessment method using qualitative and quantitative assessment synthetically.By analyzing the assets,vulnerabilities and threats of information system,this method can evaluate the risk of the system in real time with the events produced by security devices.

Yue Zhang,Wang Zhao

DOI: https://doi.org/10.1109/icngn59831.2023.10396667

2023-01-01

Abstract:The rapid development of information technology has greatly improved the level of enterprise informatization. However, while providing a variety of services to users, there may also be security issues such as data breaches, denial of service attacks, and extortion attempts. To address the aforementioned issues and enhance the security of information systems, multiple security devices have implemented protective measures. However, relying solely on the configuration and construction of security facilities cannot fundamentally resolve network security issues. Therefore, an important challenge currently faced is how to quantitatively assess, evaluate, and guide security personnel to optimize the configuration of the network security system. This is a significant matter that requires careful consideration.Currently, most existing quantitative security evaluation schemes focus on assessing security risks, but the entire security protection system has not been utilized as an evaluation criterion, and its protective effectiveness has not been quantitatively evaluated. Simultaneously, establishing quantitative connections between security impact factors and the security protection system, linking the protection effectiveness of individual security devices to overall security protection effectiveness, and then optimizing and improving the protection effectiveness have become critical bottlenecks in measuring the protection effectiveness of the network security protection system.

Zhongmin Cai,Chenglong Li

DOI: https://doi.org/10.1155/2022/9023904

IF: 1.43

2022-05-18

Mathematical Problems in Engineering

Abstract:With the rapid development of modern society, the administrative information content rapid growth of e-government information resource sharing becomes the key of the government departments for effective social management. The cloud technology Internet big data are widely used and popular, which enable information resources to be shared among government data and are both an opportunity and challenge for effective e-government information resource sharing. It is of great significance to enhance government credibility. Information security risk assessment is a comprehensive evaluation of the potential risk of an uncertain stochastic process, traditional evaluation methods are deterministic models, and it is difficult to measure the security risk of uncertainty. On the other hand, with the opening and complexity of information system business functions, the nonlinearity and complexity of evaluation calculation also increase. By studying the relatively mature assessment criteria and methods in the field of information security, this study analyzes the information security status of small Internet of Things system based on the characteristics of Internet of Things information security. Combining the latest research results of information entropy neural network and other fields with the original risk assessment methods, the improved AHP information security risk assessment model is verified by simulation examples.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Yi-xian LIU,De-jun MU

DOI: https://doi.org/10.13274/j.cnki.hdzj.2018.02.005

2018-01-01

Abstract:To fulfill the security assessment to network information system,it briefly introduces the basic information security assessment methods and gives out the overall assessment by assigning the weight to every node.To verify the correctness of the method,a simple network is constructed.The basic scores are retrieved from the NVD (National Vulnerability Database) to accomplish the assessment of the network and the risk value is converted to qualitative result.The experiment verifies the feasibility and the effectiveness of the method.It proposed the further improvement solution to the future research work.

Gang Chen,Dawei Zhao

DOI: https://doi.org/10.4304/jnw.8.9.2093-2100

2013-01-01

Abstract:This paper concentrates on the information security risk assessment model utilizing the improved wavelet neural network. The structure of wavelet neural network is similar to the multi-layer neural network, which is a feed-forward neural network with one or more inputs. Afterwards, we point out that the training process of wavelet neural networks is made up of four steps until the value of error function can satisfy a pre-defined error criteria. In order to enhance the quality of information security risk assessment, we proposed a modified version of wavelet neural network which can effectively combine all influencing factors in assessing information security risk by linear integrating several weights. Furthermore, the proposed wavelet neural network is trained by the BP algorithm with batch mode, and the weight coefficients of the wavelet are modified with the adopting mode. Finally, a series of experiments are conduct to make performance evaluation. From the experimental results, we can see that the proposed model can assess information security risk accurately and rapidly

Lina Zhu,Guoen Xia,Zuochang Zhang,Jianhua Li,Renjie Zhou

DOI: https://doi.org/10.14257/ijsia.2016.10.11.14

2016-01-01

International Journal of Security and Its Applications

Abstract:Network security situation awareness is vital important for network security supervision. In order to obtain the network security situation effectively, a multidimensional assessment method is proposed in this paper. The method is composed of three dimensions at different levels, namely vulnerability, threat and basic operation, with quantitative calculation method for each index. In the service layer, CVSS standard is adopted to assess the vulnerability situation, and simplified DREAD model is chosen for the threat situation. In the node layer, the vulnerability situation in the service layer is added with a weight, the threat situation in the service layer is accumulated according to attack paths based on Markov model, and the basic operation situation is evaluated by DS evidence fusion of several host and network performance index. In the network layer, each situation equals to weighted summation of corresponding situation in the node layer. Experimental results show the ease of use of this method, and multi-dimensional situation depicts the overall safety evolution process of network system accurately and intuitively.

CHEN Wei-hua,JIANG Quan-yuan,CAO Yi-jia,HAN Zhen-xiang

DOI: https://doi.org/10.3321/j.issn:1000-3673.2005.04.004

2005-01-01

Abstract:Based on probability theory the risk theory was applied to the vulnerability assessment of power system. Here, the power system was defined as a vulnerable system and a set of risk indices to assess the power system vulnerability and corresponding algorithm were built, thus the defects of traditional determinsistic security assessment method, which cannot satisfy the requirement of electricity market and complicated power grid, could be overcome. On this basis, a risk theory and risk indices based power system vulnerability assessment software was developed. Taking the New England test system for example, the effectiveness and advanced property of the presented method were proved.

Chun Shan,Jie Gao,Changzhen Hu,Fang Guan,Xiaolin Zhao

DOI: https://doi.org/10.1007/978-981-13-5913-2_5

2019-01-01

Abstract:In order to enhance the security of network operations, establish effective security measures, prevent the destruction of security incidents, and reduce or eliminate the losses caused by threats through network risk assessment is of important practical significance. However, most risk assessment methods focus on the research of threats and vulnerabilities. There are relatively few researches on risk based on network assets and there is a lack of accuracy in risk assessment. Therefore, this paper proposes a network risk assessment method based on asset association graphs. The method first describes the network from the perspective of asset interconnection and builds an asset association graph; secondly, it builds a threat scenario based on the asset association graph, identifies a threat event, and uses the probability of a threat event and the loss caused by the asset to obtain a quantitative description of the risk assessment; Different network risk levels and make decisions. Experiments show that the method of network risk assessment based on asset association proposed in this paper can realize the risk assessment of all assets, hosts and entire network system in the network, and provide effective guidance for network security protection.

杨洋,姚淑珍

DOI: https://doi.org/10.3778/j.issn.1002-8331.2009.03.027

2009-01-01

Computer Engineering and Applications Journal

Abstract:In the field of information security,risk assessment is the core of the risk management and control,also is the founda- tion and premises that builds up the safe system of the information system.This paper analyses the standards and process of in- formation security risk assessment,and proposes a quantitative security risk method ISSREM(Information System Security Risk E- valuation Method),based on threat analysis.ISSREM has features such as easily operative,independent,practical and the evalua- tion results comparable.And the sensitivity analysis of threaten frequency is presented,which makes the evaluation results more objective.This paper gives the calculation model of the method and the main procedures of risk evaluation using the method.Fi- nally,with examples to analyze the quantitative assessment method,this paper validates the rationality and effectiveness of the method.

LIANG Li,YANG Jun-gang,ZHU Guang-liang,ZHANG Qian

DOI: https://doi.org/10.4156/jcit.vol8.issue2.41

2013-01-01

Abstract:To exactly assess the security risk of a network and enhance the performance,a hierarchical risk assessment method for network security based on real-time warning is presented.Firstly,a hierarchical risk assessment model for computer networks is developed.This model can provide three hierarchies: services,hosts and local networks.IDS(intrusion detection system) is as a data source.Then,the risk indexes of at service level,host level and local network level is calculated by weighting based on the value of threat object,attack frequency and vulnerability severity.Finally,the accuracy and validity of the proposed method are demonstrated by the experiments.

Wei T. Yue,Metin Cakanyildirim,Young U. Ryu,Dengpan Liu

DOI: https://doi.org/10.1016/j.dss.2006.08.009

IF: 6.969

2007-01-01

Decision Support Systems

Abstract:This paper considers two important issues related to security risk management. First, the presence of network externalities in security risks. Second, the distinction of general (network) and system-specific protection measures. We found the optimal allocation of security resources (investments) in protecting every system in an organization. The results show that the consideration of network externalities and layered protection changes the risk mitigation decisions significantly. In addition, accurate estimation of system risk plays a critical role in the success of risk management. Otherwise, the use of a uniform baseline protection approach may be more desirable when the misjudgment of relative system risks is likely to occur.