Composite Metrics for Network Security Analysis

Simon Enoch Yusuf; Jin Bum Hong; Mengmeng Ge; Dong Seong Kim

doi:10.13052/jcs2445-9992.2017.003

Composite Metrics for Network Security Analysis

Simon Enoch Yusuf, Jin Bum Hong, Mengmeng Ge, Dong Seong Kim

Research output: Contribution to journal › Article › peer-review

Abstract

Security metrics present the security level of a system or a network in both
qualitative and quantitative ways. In general, security metrics are used to
assess the security level of a system and to achieve security goals. There
are a lot of security metrics for security analysis, but there is no systematic
classification of security metrics that is based on network reachability information. To address this, we propose a systematic classification of existing
security metrics based on network reachability information. Mainly, we
classify the security metrics into host-based and network-based metrics.
The host-based metrics are classified into metrics “without probability” and
“with probability”, while the network based metrics are classified into “pathbased” and “non-path based”. Finally, we present and describe an approach to develop composite security metrics and it’s calculations using a Hierarchical
Attack Representation Model (HARM) via an example network. Our novel
classification of security metrics provides a new methodology to assess the
security of a system.

Original language	English
Pages (from-to)	59-82
Journal	Convergence Security
Volume	2017
Issue number	1
DOIs	https://doi.org/10.13052/jcs2445-9992.2017.003
Publication status	Published - 25 Feb 2017
Externally published	Yes

Access to Document

10.13052/jcs2445-9992.2017.003

Cite this

@article{a4763b36bd0b40d68548970c7ae02ef4,

title = "Composite Metrics for Network Security Analysis",

abstract = "Security metrics present the security level of a system or a network in bothqualitative and quantitative ways. In general, security metrics are used toassess the security level of a system and to achieve security goals. Thereare a lot of security metrics for security analysis, but there is no systematicclassification of security metrics that is based on network reachability information. To address this, we propose a systematic classification of existingsecurity metrics based on network reachability information. Mainly, weclassify the security metrics into host-based and network-based metrics.The host-based metrics are classified into metrics “without probability” and“with probability”, while the network based metrics are classified into “pathbased” and “non-path based”. Finally, we present and describe an approach to develop composite security metrics and it{\textquoteright}s calculations using a HierarchicalAttack Representation Model (HARM) via an example network. Our novelclassification of security metrics provides a new methodology to assess thesecurity of a system.",

author = "Yusuf, {Simon Enoch} and Hong, {Jin Bum} and Mengmeng Ge and Kim, {Dong Seong}",

year = "2017",

month = feb,

day = "25",

doi = "10.13052/jcs2445-9992.2017.003",

language = "English",

volume = "2017",

pages = "59--82",

journal = "Convergence Security",

issn = "2445-9992",

publisher = "River Publishers",

number = "1",

}

TY - JOUR

T1 - Composite Metrics for Network Security Analysis

AU - Yusuf, Simon Enoch

AU - Hong, Jin Bum

AU - Ge, Mengmeng

AU - Kim, Dong Seong

PY - 2017/2/25

Y1 - 2017/2/25

N2 - Security metrics present the security level of a system or a network in bothqualitative and quantitative ways. In general, security metrics are used toassess the security level of a system and to achieve security goals. Thereare a lot of security metrics for security analysis, but there is no systematicclassification of security metrics that is based on network reachability information. To address this, we propose a systematic classification of existingsecurity metrics based on network reachability information. Mainly, weclassify the security metrics into host-based and network-based metrics.The host-based metrics are classified into metrics “without probability” and“with probability”, while the network based metrics are classified into “pathbased” and “non-path based”. Finally, we present and describe an approach to develop composite security metrics and it’s calculations using a HierarchicalAttack Representation Model (HARM) via an example network. Our novelclassification of security metrics provides a new methodology to assess thesecurity of a system.

AB - Security metrics present the security level of a system or a network in bothqualitative and quantitative ways. In general, security metrics are used toassess the security level of a system and to achieve security goals. Thereare a lot of security metrics for security analysis, but there is no systematicclassification of security metrics that is based on network reachability information. To address this, we propose a systematic classification of existingsecurity metrics based on network reachability information. Mainly, weclassify the security metrics into host-based and network-based metrics.The host-based metrics are classified into metrics “without probability” and“with probability”, while the network based metrics are classified into “pathbased” and “non-path based”. Finally, we present and describe an approach to develop composite security metrics and it’s calculations using a HierarchicalAttack Representation Model (HARM) via an example network. Our novelclassification of security metrics provides a new methodology to assess thesecurity of a system.

U2 - 10.13052/jcs2445-9992.2017.003

DO - 10.13052/jcs2445-9992.2017.003

M3 - Article

SN - 2445-9992

VL - 2017

SP - 59

EP - 82

JO - Convergence Security

JF - Convergence Security

IS - 1

ER -

Composite Metrics for Network Security Analysis

Abstract

Access to Document

Fingerprint

Cite this