Title : ( ARisk Estimation Framework for Security Threats in Computer Networks )
Authors: Razieh Rezaee , Abbas Ghaemi Bafghi ,Abstract
In security risk management of computer networks, some challenges are more serious in large networks. Specifying and estimating risks is largely dependent on the knowledge of security experts. In this paper, a framework for security risk estimation is proposed to address this issue. It represents the security knowledge required for security risk estimation and utilizes current security metrics and vulnerability databases. This framework is a major step towards automating the process of security risk estimation so that a network administrator can estimate the risk of the network with less expertise and eort. As a case study, the proposed framework is applied to a sample network to show its applicability and usability in operational environments. The comparison of results with two existing methods showed the validity of the estimations given by the proposed framework.
Keywords
, Security Threat, Analysis Model, Computer Networks, Risk Estimation, Attack Graph, Bayesian Network.@article{paperid:1083192,
author = {Rezaee, Razieh and Ghaemi Bafghi, Abbas},
title = {ARisk Estimation Framework for Security Threats in Computer Networks},
journal = {Journal of Computing and Security},
year = {2020},
volume = {7},
number = {1},
month = {June},
issn = {2322-4460},
pages = {19--33},
numpages = {14},
keywords = {Security Threat; Analysis Model;
Computer Networks; Risk
Estimation; Attack Graph;
Bayesian Network.},
}
%0 Journal Article
%T ARisk Estimation Framework for Security Threats in Computer Networks
%A Rezaee, Razieh
%A Ghaemi Bafghi, Abbas
%J Journal of Computing and Security
%@ 2322-4460
%D 2020