00000cmm a22000004a 4500 UP-99796217611154605 Buklod 20140305091419.0 m go j cr |n |||auu|a 111116s2012 nyu u a eng d 9781461418603 (eBook) 1461418607 (eBook) (iLib)UPD-00214604433 DML eng DMLUC TK 5105 59 O9 2011eb Ou, Xinming 1975- Quantitative security risk assessment of enterprise networks [electronic resource] Xinming Ou, Anoop Singhal. New York, NY Springer c2011. 1 online resource (xiii, 28 p.) ill. SpringerBriefs in computer science The Need for Quantifying Security -- Attack Graph Techniques -- The Common Vulnerability Scoring System (CVSS) -- Security Risk Analysis of Enterprise Networks Using Attack Graphs -- Conclusion. IP based subscription, on campus and remote access. Access via Electronic Resources of the UPD University Library Website. Protection of enterprise networks from malicious intrusions is critical to the economy and security of our nation. This article gives an overview of the techniques and challenges for security risk analysis of enterprise networks. A standard model for security analysis will enable us to answer questions such as ?are we more secure than yesterday? or ?how does the security of one network configuration compare with another one?. In this article, we will present a methodology for quantitative security risk analysis that is based on the model of attack graphs and the Common Vulnerability Scoring System (CVSS). Our techniques analyze all attack paths through a network, for an attacker to reach certain goal(s). Electronic reproduction. New York SpringerLink 2011. Available via World Wide Web through Springerlink. Computer networks Security measures. Computer networks Risk assessment Methodology. Cyberinfrastructure Risk assessment Methodology. Cyberinfrastructure Security measures. Electronic books. Singhal, Anoop 1958-. SpringerLink (Online service). Available for University of the Philippines Diliman via Springerlink. Click here to access http://dx.doi.org/10.1007/978-1-4614-1860-3 SpringerLINK FO Monograph UPD DMLR Electronic Resource