k-Zero Day Safety: A Network Security Metric for Measuring the Risk of Unknown Vulnerabilities
@article{Wang2014kZeroDS, title={k-Zero Day Safety: A Network Security Metric for Measuring the Risk of Unknown Vulnerabilities}, author={Lingyu Wang and S. Jajodia and A. Singhal and P. Cheng and Steven Noel}, journal={IEEE Transactions on Dependable and Secure Computing}, year={2014}, volume={11}, pages={30-44} }
By enabling a direct comparison of different security solutions with respect to their relative effectiveness, a network security metric may provide quantifiable evidences to assist security practitioners in securing computer networks. [...] Key Result We formally define the metric, analyze the complexity of computing the metric, devise heuristic algorithms for intractable cases, and finally demonstrate through case studies that applying the metric to existing network security practices may generate actionable…Expand Abstract
Figures, Tables, and Topics from this paper
126 Citations
Network Security Metrics: Estimating the Resilience of Networks Against Zero Day Attacks
- Computer Science
- 2017
- Highly Influenced
- PDF
Diversity-aware, Cost-effective Network Security Hardening Using Attack Graph
- Computer Science
- SSCC
- 2017
- 2
A novel system for quantifying the danger degree of computer network attacks
- Computer Science
- 2017 IEEE 4th International Conference on Knowledge-Based Engineering and Innovation (KBEI)
- 2017
- 1
New Vulnerability Scoring System for dynamic security evaluation
- Computer Science
- 2016 8th International Symposium on Telecommunications (IST)
- 2016
- 8
Zero-Day Vulnerability Risk Assessment and Attack Path Analysis Using Security Metric
- Computer Science
- ICAIS
- 2019
- 4
Data Fusion of Security Logs to Measure Critical Security Controls to Increase Situation Awareness
- Computer Science
- 2018
Security Measurement for Unknown Threats Based on Attack Preferences
- Computer Science
- Secur. Commun. Networks
- 2018
- 7
- PDF
References
SHOWING 1-10 OF 56 REFERENCES
k-Zero Day Safety: Measuring the Security Risk of Networks against Unknown Attacks
- Computer Science
- ESORICS
- 2010
- 90
- PDF
A weakest-adversary security metric for network configuration security analysis
- Computer Science
- QoP '06
- 2006
- 165
Empirical Analysis of System-Level Vulnerability Metrics through Actual Attacks
- Computer Science
- IEEE Transactions on Dependable and Secure Computing
- 2012
- 74
Extending Attack Graph-Based Security Metrics and Aggregating Their Application
- Computer Science
- IEEE Transactions on Dependable and Secure Computing
- 2012
- 118
- PDF