Network security analysis using information fusion
Due to the rapid development of computer network system, the traditional methods like vulnerability scanning to analyze network security are confronting large challenges, because it cannot consider the security information synthetically. To get the security situation of network, a system of network security analysis using information fusion is designed and implemented in this present study. The study implements the network data collection based on TCP/IP protocol utilizing multi-sensors which covers large scale domains. The data are fused in data layer, so the computer information and network information are collected. These include the operating system type, the network service and the simple network topology. By associating the information with vulnerability and attack method, the model for network security analysis is built. This study has generated a network attack graph to represent the security states of the computer network.
Author's Name: Zhang, T., Hu, M., Yun, X., Li, D.
Volume: Volume 1
Issues: Issue 2
Keywords: Attack graph, Information fusion, Network security, Sensor, Vulnerability