Skip to main content
SpringerLink
Log in

Dynamic-Enabled Defense Strategy Base on Improved CVSS for the Home Internet

  • Conference paper
  • First Online:
Book cover Cloud Computing and Security (ICCCS 2018)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 11067))

Included in the following conference series:

  • 2141 Accesses

Abstract

Nowadays, home Internet has attracted a lot of interest. Dynamic-enabled Defense Strategy can reduce the possibility of being hacked to become the mining systems for blockchain. In order to reflect the status of the smart home system more accurately, this paper proposed a method to improve the common vulnerability scoring system (CVSS) and make CVSS more suitable for the smart home system. The proposed method can obtain vulnerabilities scores, reflecting the security status of the system accurately and providing strong support for system security defense and reinforcement. For dynamically-enabled defense with constantly changing state, it is hard for the attacker to obtain all the information in a short time, since it requires too many resources when the changing frequency is too high. Whereas the attacker has enough time to analyze the system with low changing frequency. Combining with the improved vulnerability scoring system, we propose a dynamic-enable defense strategy based on Markov chain and stochastic Petri net to calculate the attack detection probability and the vulnerability value of the system, and obtain the best dynamic switching interval to ensure the security of the system.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Frustaci, M., et al.: Evaluating critical security issues of the IoT world: present and Future challenges. IEEE Internet Things J. Volume PP Issue 99, 1 (2017)

    Google Scholar 

  2. Keramati, M.: New Vulnerability Scoring System for dynamic security evaluation. In: 8th International Symposium on Telecommunications (IST), 27–28 September 2016, pp. 746–751 (2016)

    Google Scholar 

  3. Aksu, U., et al.: A quantitative CVSS-based cyber security risk assessment methodology for IT systems. In: 2017 International Carnahan Conference on Security Technology (ICCST), 23–26 October 2017, pp. 1–8. IEEE (2017)

    Google Scholar 

  4. Maghrabi, L., et al.: Improved software vulnerability patching techniques using CVSS and game theory. In: 2017 International Conference on Cyber Security And Protection Of Digital Services (Cyber Security), 19–20 June 2017, pp. 1–6 (2017)

    Google Scholar 

  5. Doynikova, E., Kotenko, I.: CVSS-based probabilistic risk assessment for cyber situational awareness and countermeasure selection. In: 2017 25th Euromicro International Conference on Parallel, Distributed and Network-based Processing (PDP), 6–8 March 2017, pp. 345–353 (2017)

    Google Scholar 

  6. Kiwia, D., Dehghantanha, A., Choo, K.-K.R., Slaughter, J.: A cyber kill chain based taxonomy of banking Trojans for evolutionary computational intelligence. J. Comput. Sci. (2017)

    Google Scholar 

  7. Mohsin, M., Anwar, Z.: Where to kill the cyber kill-chain: an ontology-driven framework for IoT security analytics. In: 2016 International Conference on Frontiers of Information Technology (FIT), 19–21 December 2016, pp. 23–28 (2016)

    Google Scholar 

  8. Liu, Y., et al.: A colored generalized stochastic Petri net simulation model for service reliability evaluation of active-active cloud data center based on IT infrastructure. In: 2017 IEEE Military Communications Conference (MILCOM), 20–22 December 2017, pp. 51–56 (2017)

    Google Scholar 

  9. Jammal, M., et al.: Evaluating high availability-aware deployments using stochastic petri net model and cloud scoring selection tool. IEEE Trans. Serv. Comput. 2017(99), 1 (2017)

    Google Scholar 

  10. Utomo, S.B., Hendradjaya, B.: Usability testing and evaluation of smart culinary system based on cyber-physical-social system. In: 2017 International Conference on Information Technology Systems and Innovation (ICITSI), 23–24 October 2017, pp. 219–222 (2017)

    Google Scholar 

  11. Lin, Y., Quan, Y.: Dynamially-enabled cyberspace defense. In: The People’s Posts and Telecommunications Press, 1st ed., pp. 214–215. Posts & Telecom Press, Beijing (2016)

    Google Scholar 

  12. Liu, Y., Hu, S., Ho, T.-Y.: Vulnerability assessment and defense technology for smart home cybersecurity considering pricing cyberattacks. In: Computer-Aided Design (ICCAD), 08 January 2015, pp. 183–190. IEEE (2015)

    Google Scholar 

  13. Antunes, N., Vieira, M.: Defending against web application vulnerabilities. Computer 45(2), 66–72 (2011)

    Article  Google Scholar 

  14. Salamat, B., Jackson, T., Wagner, G., et al.: Runtime defense against code injection attacks using replicated execution. IEEE Trans. Dependable Secure Comput. 8(4), 588–601 (2011)

    Article  Google Scholar 

  15. Qixu, L., Yubin, Z., Yuqing, Z., et al.: Research on key technologies of security vulnerability classification. J. Commun. 2012(s1), 79–87 (2012)

    Google Scholar 

  16. Srivatsa, M., Liu, L.: Vulnerabilities and security threats in structured overlay networks: a quantitative analysis. In: 2004 20th Annual Computer Security Applications Conference, 17 January 2005, pp. 252–261. IEEE (2005)

    Google Scholar 

  17. Li, X., Chang, X., Board, J.A., et al.: A novel approach for software vulnerability classification. In: 2017 Annual Reliability and Maintainability Symposium (RAMS), 30 March 2017, pp. 1–7. IEEE (2017)

    Google Scholar 

  18. Shuyuan, J., Yong, W., Xiang, C., et al.: A review of classification method for network vulnerability. In: 2009 IEEE International Conference on System, Man and Cybernetics (SMC), 04 December 2009, pp. 1171–1175. IEEE (2009)

    Google Scholar 

  19. Choudhury, T., et al.: Privacy and security of cloud-based internet of things (IoT). In: 2017 3rd International Conference on Computational Intelligence and Networks (CINE), 28 October 2017, pp. 40–45 (2017)

    Google Scholar 

  20. Khan, N., et al.: Performance analysis of security algorithms for IoT devices. In: 2017 IEEE Region 10 Humanitarian Technology Conference (R10-HTC), 21–23 December 2017, pp. 130–133 (2017)

    Google Scholar 

  21. Waz, I.R., et al.: Internet of things (IoT) security platforms. In: 2017 12th International Conference on Computer Engineering and Systems (ICCES), 19–20 December 2017, pp. 500–507 (2017)

    Google Scholar 

Download references

Acknowledgment

This work is supported by the National Key R&D Program of China (2016YFF0204001), Open Foundation of Guizhou Provincial Key Laboratory of Public Big Data (2017BDKFJJ017) and CCF-Venustech Hongyan Research Initiative (2017-004).

Author information

Authors and Affiliations

  1. Institute of Computer Application, China Academy of Engineering Physics, Mianyang, 621900, China

    Chunru Zhou

  2. Information Security Center, Beijing University of Posts and Telecommunications, Beijing, 100876, China

    Min Lei & Kunchang Li

  3. Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guizhou Guiyang, 550025, China

    Chunru Zhou, Min Lei, Kunchang Li & Li Xu

  4. SeeleTech Corporation, San Francisco, 94107, USA

    Wei Bi

  5. Zsbatech Corporation, Beijing, 100088, China

    Wei Bi

Authors
  1. Chunru Zhou
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Min Lei
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Kunchang Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Li Xu
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Wei Bi
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Kunchang Li .

Editor information

Editors and Affiliations

  1. Nanjing University of Information Science and Technology, Nanjing, China

    Xingming Sun

  2. Nanjing University of Information Science and Technology, Nanjing, China

    Zhaoqing Pan

  3. Department of Computer Science, Purdue University, West Lafayette, IN, USA

    Elisa Bertino

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Zhou, C., Lei, M., Li, K., Xu, L., Bi, W. (2018). Dynamic-Enabled Defense Strategy Base on Improved CVSS for the Home Internet. In: Sun, X., Pan, Z., Bertino, E. (eds) Cloud Computing and Security. ICCCS 2018. Lecture Notes in Computer Science(), vol 11067. Springer, Cham. https://doi.org/10.1007/978-3-030-00018-9_27

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-00018-9_27

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-00017-2

  • Online ISBN: 978-3-030-00018-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation