Automatic recognition model of intrusive intention based on three layers attack graph
In order to solve the difficulties of predicting intrusion attempts and finding network vulnerability,an automatic identification method of intrusion attempts is proposed,which is based on three layers attack graph.This method builds the network's three layers attack graph based on the analysis of the underlying alarm data.Then it determines the quantitative attack graph from the analysis of the probability of the intrusion attempts.Finally,the critical host in the network is found by the generation algorithm of the minimum key point set.Thus,the manager can get the right network security policy.It is verified that the proposed intrusion identification method is feasible,effective and simple.
NETL
NSTL
万方数据
维普
