Research On Network Risk Measurement Method Based On Attack Graph Model

The rapid development of network technology has made the security of the network increasingly serious.The measurement of potential risks in the network has become an important task for researchers.From the existing research,the attack graph based on it is often a more complex state attack graph,and the measurement method also lacks the consideration of the relationship between the vulnerable points,and the influencing factors of the measurement consideration are not comprehensive enough.In view of the complexity of the attack graph and the fewer considerations of the metrics,the following research is done.First,the attack graph is modeled to describe the content of the network topology,node attribute information,and vulnerability attributes.By modeling the network information and using the attack graph generation algorithm,the attack graph with the vulnerable point as the node and the attack direction of the vulnerable point as the edge is obtained.The figure clearly shows the horizontal and vertical between the vulnerable points.Take advantage of relationships and the attack paths in the network.Secondly,this paper quantifies the relevance of vulnerable points in the network as an indicator of vulnerability measurement.Based on the CVSS vulnerability measurement method,it adds a factor to the availability of vulnerable points in the attack graph.The quantification method,in addition to considering the original influencing factors in CVSS,also adds two influencing factors: attack cost and openness of attack technology.Combining the relevance and availability of vulnerability points,the probability of attack success and the attack hazard index of vulnerable points are quantified.Thirdly,the attack graph is analyzed to obtain all the attack paths in the network,and then the attack success probability and the attack success hazard index of the attack path are measured by the relationship between the vulnerability point and the attack path,and the success probability is high and the hazard index is large.The path combines the attack success risk index and the inherent hazard index of the path to obtain the risk of the attack path,thereby obtaining the risk value of the network.Finally,the network environment is built,and the attack graph is generated by using the constructed attack graph model.The verification of the proposed network risk measurement method is completed based on the attack graph.