论文信息 - A Method for Network Vulnerability Analysis Using Colored Petri Net

A Method for Network Vulnerability Analysis Using Colored Petri Net

Traditional methods for evaluating network security neglect the correlation of network vulnerabilities. To solve this problem, a method based on Colored Petri Net (CPN) modeling is presented. Potential attack sequences are built according to the correlation of network vulnerabilities. The weakness and key paths can be found through analyzing the attack sequences. Simulation results show that the proposed method can help network managers to find the hidden danger actively and make security strategies effectively.

Wei Wang | Qian Zhang | Wu Yang | Dapeng Man

[1] Hu Ming-zeng. Research on privilege-escalating based vulnerability taxonomy with multidimensional quantitative attribute , 2004 .

[2] Cynthia A. Phillips,et al. A graph-based system for network-vulnerability analysis , 1998, NSPW '98.

[3] Boleslaw Mikolajczak,et al. Modeling of information systems security features with colored Petri nets , 2004, 2004 IEEE International Conference on Systems, Man and Cybernetics (IEEE Cat. No.04CH37583).

[4] Xing Xu. A Survey of Computer Vulnerability Assessment , 2004 .

[5] Michael Westergaard,et al. CPN Tools for Editing, Simulating, and Analysing Coloured Petri Nets , 2003, ICATPN.

[6] Tadao Murata,et al. Petri nets: Properties, analysis and applications , 1989, Proc. IEEE.

[7] Yongzheng Zhang,et al. Computer Vulnerability Evaluation Using Fault Tree Analysis , 2005, ISPEC.

[8] Stephen D. Wolthusen,et al. Modeling and execution of complex attack scenarios using interval timed colored Petri nets , 2006, Fourth IEEE International Workshop on Information Assurance (IWIA'06).