Quantitative security risk assessment of enterprise networks
Protection of enterprise networks from malicious intrusions is critical to the economy and security of our nation. This article gives an overview of the techniques and challenges for security risk analysis of enterprise networks. A standard model for security analysis will enable us to answer questi...
| Main Author: | Ou, Xinming, 1975- |
|---|---|
| Other Authors: | Singhal, Anoop, 1958-, SpringerLink (Online service) |
| Format: | eBook |
| Language: | English |
| Published: |
New York, NY :
Springer,
©2012.
New York, NY : [2012] |
| Physical Description: |
1 online resource (xiii, 28 pages) : illustrations. |
| Series: |
SpringerBriefs in computer science.
|
| Subjects: |
Table of Contents:
- Quantitative Security Risk Assessment of Enterprise Networks; Preface; Acknowledgements; Contents; Acronyms; Chapter 1 The Need for Quantifying Security; 1.1 Introduction; 1.2 PastWork in Security Risk Analysis; Chapter 2 Attack Graph Techniques; 2.1 An example scenario; 2.2 Tools for Generating Attack Graphs; Chapter 3 The Common Vulnerability Scoring System (CVSS); 3.1 An Example; Chapter 4 Security Risk Analysis of Enterprise Networks Using Attack Graphs; 4.1 Example 1; Deriving security metrics from attack graphs.; 4.2 Example 2; 4.3 Example 3.
- 4.4 Using risk metrics to prioritize security hardeningChapter 5 Conclusion; References.