Network Security Metrics
Autor Lingyu Wang, Sushil Jajodia, Anoop Singhalen Limba Engleză Hardback – 23 noi 2017
The authors start by examining the limitations of existing solutions and standards on security metrics, such as CVSS and attack surface, which typically focus on known vulnerabilities in individual software products or systems. The first few chapters of this book describe different approaches to fusing individual metric values obtained from CVSS scores into an overall measure of network security using attack graphs. Since CVSS scores are only available for previously known vulnerabilities, such approaches do not consider the threat of unknownattacks exploiting the so-called zero day vulnerabilities. Therefore, several chapters of this book are dedicated to develop network security metrics especially designed for dealing with zero day attacks where the challenge is that little or no prior knowledge is available about the exploited vulnerabilities, and thus most existing methodologies for designing security metrics are no longer effective. Finally, the authors examine several issues on the application of network security metrics at the enterprise level. Specifically, a chapter presents a suite of security metrics organized along several dimensions for measuring and visualizing different aspects of the enterprise cyber security risk, and the last chapter presents a novel metric for measuring the operational effectiveness of the cyber security operations center (CSOC).
Security researchers who work on network security or security analytics related areas seeking new research topics, as well as security practitioners including network administrators and security architects who are looking for state of the art approaches to hardening their networks, will find this book helpful as a reference. Advanced-level students studying computer science and engineering will find this book useful as a secondary text.
Toate formatele și edițiile | Preț | Express |
---|---|---|
Paperback (1) | 575.09 lei 6-8 săpt. | |
Springer International Publishing – sep 2018 | 575.09 lei 6-8 săpt. | |
Hardback (1) | 805.06 lei 6-8 săpt. | |
Springer International Publishing – 23 noi 2017 | 805.06 lei 6-8 săpt. |
Preț: 805.06 lei
Preț vechi: 1006.32 lei
-20% Nou
Puncte Express: 1208
Preț estimativ în valută:
154.14€ • 160.51$ • 127.89£
154.14€ • 160.51$ • 127.89£
Carte tipărită la comandă
Livrare economică 13-27 februarie
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9783319665047
ISBN-10: 3319665049
Pagini: 206
Ilustrații: XIV, 207 p. 110 illus., 63 illus. in color.
Dimensiuni: 155 x 235 mm
Greutate: 0.49 kg
Ediția:1st ed. 2017
Editura: Springer International Publishing
Colecția Springer
Locul publicării:Cham, Switzerland
ISBN-10: 3319665049
Pagini: 206
Ilustrații: XIV, 207 p. 110 illus., 63 illus. in color.
Dimensiuni: 155 x 235 mm
Greutate: 0.49 kg
Ediția:1st ed. 2017
Editura: Springer International Publishing
Colecția Springer
Locul publicării:Cham, Switzerland
Cuprins
1 Measuring the Overall Network Security by Combining CVSS Scores Based on Attack Graphs and Bayesian Networks.- 2 Refining CVSS-based network security metrics by examining the base scores.- 3 Security Risk Analysis of Enterprise Networks Using Probabilistic Attack Graphs.- 4 k-Zero day safety: Evaluating the resilience of networks against unknown attacks.- 5 Using Bayesian Networks to Fuse Intrusion Evidences and Detect Zero-day Attack Paths.- 6 Evaluating the network diversity of networks against zero-day attacks.- 7 Metrics suite for network attack graph analytics.- 8 A Novel Metric for Measuring Operational Effectiveness of a Cybersecurity Operations Center.
Caracteristici
Reviews a range of network security models that focus on combining individual metric scores obtained from standard scoring systems, such as CVSS, into an overall measure of network security. Devotes several chapters on network security metrics specifically designed with zero day attacks in mind Discusses various applications of network security metrics, ranging from network attack graph analytics to performance evaluation for security operation centers.