A new approach for network vulnerability analysis

Hai L. Vu, Kenneth K. Khaw, T. Y. Chen, Fei Ching Kuo

Research output: Chapter in Book/Report/Conference proceedingConference PaperOther

13 Citations (Scopus)


We propose in this paper a novel approach to analyze network vulnerability and to obtain a quantitative value representing the level of security achieved in an arbitrary network. Unlike previous graph-based algorithms that generate attack trees (or graphs) to cover all possible sequences of vulnerabilities and therefore are not scalable, our method utilizes the attack graph's principles, but directly analyzes and produces the desired security measure for a network without building the actual attack graph. The proposed approach relies on a unique evaluation of vulnerability metric defined in this paper and is demonstrated through an example of a network that provides voice over IP services.

Original languageEnglish
Title of host publication33rd IEEE Conference on Local Computer Networks, LCN 2008
Number of pages7
Publication statusPublished - 31 Dec 2008
Externally publishedYes
Event33rd IEEE Conference on Local Computer Networks, LCN 2008 - Montreal, AB, Canada
Duration: 14 Oct 200817 Oct 2008

Publication series

NameProceedings - Conference on Local Computer Networks, LCN


Conference33rd IEEE Conference on Local Computer Networks, LCN 2008
CityMontreal, AB

Cite this