Abstract
In this paper, we considered active cyber attack model to assess vulnerability in network system. As we simulate cyber attack model in the network system, we can identify vulnerabilities, and provide appropriate countermeasures against them. Our model consists of two agents, two modules, and action controller on on-line system, and attack damage assessment analyzer on off-line system. We can minimize a detection probability from target system because we applied ’Sensor to Shooter’ concept to our model, and separated information collection agent and attack agent for reduce attack action time. One module analyzes target system’s information. Another module develops target system and main point of impact, and builds attack scenario consisted of attack tree and attack pattern. Attack action agents execute the set of attack sequence which consists of attack pattern in attack tree’s each node. Action controller controls all execution process of our model’s elements.
This study was supported by a grant of the Korea Health 21 R&D Project, Ministry of Health & Welfare, Republic of Korea(02-PJ3-PG6-EV08-0001).
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
ye, N., et al.: A process control approach to cyber attack detection. Communications of the ACM 44(8), 77–82 (2001)
Jajodia, S., et al.: Surviving Information Warfare Attacks. Computer 32(4), 57–63 (1999)
Richard, E.: Overill: ’Information warfare: battles in cyberspace. Computing & Control Engineering Journal 12(3), 125–128 (2001)
Schudel, G., et al.: Modeling behavior of the cyber-terrorist, RAND National Security Research Division. In: Proceeding of workshop, August 2000, pp. 49–59 (2000)
Futoransky, A., et al.: Building Computer Network Attacks, http://www.coresecurity.com/attack/.../planning/Futoransky_Notarfrancesco_Richarte_Sarraute_NetworkAttacks_2003.pdf
Moore, A.P., et al.: Attack Modeling for Information Security and Survivability, CMU/SEI-2001-TN-001 (March 2001)
Lathrop, S.D., et al.: Modeling Network Attacks. In: BRIMS 2003 (May 2003)
Kotenko, I.: Agent-based modelingand simulation of cyber-warfare between malefactors and security agents in internet. In: ECMS 2005 (2005)
Daley, K., et al.: A Structural Framework for Modeling Multi-stage Network Attacks. In: ICPPW 2002, August 2002, pp. 5–10 (2002)
Surdu, J.R., et al.: Military Academy Attack/Defense Network Simulation. In: ASTC:SMGAS (April 2003)
Templeton, S.J., et al.: A Requires/Provides Model for Computer Attacks. In: Proceedings of the New Security Paradigms Workshop (September 2000)
ROKAF Combat Development Group: Iraq war-Analysis based on Air Operation (June 2003)
Grant, T., et al.: Comparing OODA & other models as Operational View C2 Architecture Topic: C4ISR/C2 Architecture. In: ICCRTS 2005 (June 2005)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Eom, JH., Han, YJ., Chung, TM. (2006). Modeling Active Cyber Attack for Network Vulnerability Assessment. In: Min, G., Di Martino, B., Yang, L.T., Guo, M., Rünger, G. (eds) Frontiers of High Performance Computing and Networking – ISPA 2006 Workshops. ISPA 2006. Lecture Notes in Computer Science, vol 4331. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11942634_99
Download citation
DOI: https://doi.org/10.1007/11942634_99
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-49860-5
Online ISBN: 978-3-540-49862-9
eBook Packages: Computer ScienceComputer Science (R0)