Network security metrics / Lingyu Wang, Sushil Jajodia, Anoop Singhal
Material type:
TextPublication details: Cham, Switzerland : Springer, c2017.Description: xiv, 207 p. : ill. ; 25 cmISBN: - 9783319665047
- 005.8 WA NE
| Item type | Current library | Call number | Status | Notes | Date due | Barcode | |
|---|---|---|---|---|---|---|---|
| REGULAR | University of Wollongong in Dubai Main Collection | 005.8 WA NE (Browse shelf(Opens below)) | Available | April 2018 | T0057838 |
This book examines different aspects of network security metrics and their application to enterprise networks. One of the most pertinent issues in securing mission-critical computing networks is the lack of effective security metrics which this book discusses in detail. Since “you cannot improve what you cannot measure”, a network security metric is essential to evaluating the relative effectiveness of potential network security solutions.
The authors start by examining the limitations of existing solutions and standards on security metrics, such as CVSS and attack surface, which typically focus on known vulnerabilities in individual software products or systems. The first few chapters of this book describe different approaches to fusing individual metric values obtained from CVSS scores into an overall measure of network security using attack graphs. Since CVSS scores are only available for previously known vulnerabilities, such approaches do not consider the threat of unknown attacks exploiting the so-called zero day vulnerabilities. Therefore, several chapters of this book are dedicated to develop network security metrics especially designed for dealing with zero day attacks where the challenge is that little or no prior knowledge is available about the exploited vulnerabilities, and thus most existing methodologies for designing security metrics are no longer effective.
There are no comments on this title.