Quantitative Security Risk Assessment of Enterprise Networks (SpringerBriefs in Computer Science)
暫譯: 企業網路的量化安全風險評估 (SpringerBriefs in Computer Science)
Xinming Ou, Anoop Singhal
- 出版商: Springer
- 出版日期: 2011-11-05
- 售價: $2,400
- 貴賓價: 9.5 折 $2,280
- 語言: 英文
- 頁數: 28
- 裝訂: Paperback
- ISBN: 1461418593
- ISBN-13: 9781461418597
-
相關分類:
Computer-Science、資訊安全
海外代購書籍(需單獨結帳)
相關主題
商品描述
Protection of enterprise networks from malicious intrusions is critical to the economy and security of our nation. This article gives an overview of the techniques and challenges for security risk analysis of enterprise networks. A standard model for security analysis will enable us to answer questions such as “are we more secure than yesterday” or “how does the security of one network configuration compare with another one”. In this article, we will present a methodology for quantitative security risk analysis that is based on the model of attack graphs and the Common Vulnerability Scoring System (CVSS). Our techniques analyze all attack paths through a network, for an attacker to reach certain goal(s).
商品描述(中文翻譯)
保護企業網路免受惡意入侵對我們國家的經濟和安全至關重要。本文概述了企業網路安全風險分析的技術和挑戰。一個標準的安全分析模型將使我們能夠回答諸如「我們今天的安全性是否比昨天更高」或「一個網路配置的安全性與另一個配置相比如何」等問題。在本文中,我們將提出一種基於攻擊圖模型和通用漏洞評分系統(Common Vulnerability Scoring System, CVSS)的定量安全風險分析方法。我們的技術分析了攻擊者通過網路達成特定目標的所有攻擊路徑。
