Effectiveness of Placing Attack Detection Detectors
Main Article Content
Abstract
The effectiveness of intrusion detection systems based on immune detectors requires rational placement of immune detectors on network nodes. For this, it is necessary to determine the risk of violating the information security of the computer network. Evaluating the network nodes’ security risk is complicated by the number of vulnerabilities. To solve this problem, it is proposed to use a statistical formal model based on Markov chains in combination with vulnerability analysis metrics. To analyze vulnerabilities, we use scoring scores as metrics of basic, temporal, and contextual types. The main component of the proposed model is the graph of possible trajectories. An example network was used to test the proposed model. A formal model of information security risk assessment allows identifying critical nodes along the path of access to the target node that makes it possible to install immune detectors on these nodes in order to improve the protection system.
Downloads
Metrics
Article Details
Licensing
TURCOMAT publishes articles under the Creative Commons Attribution 4.0 International License (CC BY 4.0). This licensing allows for any use of the work, provided the original author(s) and source are credited, thereby facilitating the free exchange and use of research for the advancement of knowledge.
Detailed Licensing Terms
Attribution (BY): Users must give appropriate credit, provide a link to the license, and indicate if changes were made. Users may do so in any reasonable manner, but not in any way that suggests the licensor endorses them or their use.
No Additional Restrictions: Users may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.