Representing TCP/IP Connectivity For Topological Analysis of Network Security

San Diego California December 09-December 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176275

18th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Ronald Ritchey Articles by Brian O?Berry Articles by Steven Noel

	ASCII Text	x
	Ronald Ritchey, Brian O?Berry, Steven Noel, "Representing TCP/IP Connectivity For Topological Analysis of Network Security," Computer Security Applications Conference, Annual, pp. 25, 18th Annual Computer Security Applications Conference (ACSAC '02), 2002.

	BibTex	x
	@article{ 10.1109/CSAC.2002.1176275, author = {Ronald Ritchey and Brian O?Berry and Steven Noel}, title = {Representing TCP/IP Connectivity For Topological Analysis of Network Security}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2002}, issn = {1063-9527}, pages = {25}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176275}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Representing TCP/IP Connectivity For Topological Analysis of Network Security SN - 1063-9527 SP EP A1 - Ronald Ritchey, A1 - Brian O?Berry, A1 - Steven Noel, PY - 2002 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Ronald Ritchey, George Mason University

Brian O?Berry, George Mason University

Steven Noel, George Mason University

The individual vulnerabilities of hosts on a network can be combined by an attacker to gain access that would not be possible if the hosts were not interconnected. Currently available tools report vulnerabilities in isolation and in the context of individual hosts in a network. Topological vulnerability analysis (TVA) extends this by searching for sequences of interdependent vulnerabilities, distributed among the various network hosts. Model checking has been applied to the analysis of this problem with some interesting initial result. However previous efforts did not take into account a realistic representation of network connectivity. These models were enough to demonstrate the usefulness of the model checking approach but would not be sufficient to analyze real-world network security problems. This paper presents a modem of network connectivity at multiple levels of the TCP/IP stack appropri-ate for use in a model checker. With this enhancement, it is possible to represent realistic networks including common network security devices such as firewalls, filtering routers, and switches.

Citation:

Ronald Ritchey, Brian O?Berry, Steven Noel, "Representing TCP/IP Connectivity For Topological Analysis of Network Security," acsac, pp.25, 18th Annual Computer Security Applications Conference (ACSAC '02), 2002

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.