Study of SDN intrusion intent identification algorithm based on Bayesian attack graph

Zhiyong LUO; Yu ZHANG; Qing WANG; Weiwei SONG

Tongxin xuebao (Apr 2023)

Study of SDN intrusion intent identification algorithm based on Bayesian attack graph

Zhiyong LUO,
Yu ZHANG,
Qing WANG,
Weiwei SONG

Affiliations

Zhiyong LUO
Yu ZHANG
Qing WANG
Weiwei SONG

Journal volume & issue: Vol. 44
pp. 216 – 225

Abstract

Read online

Since the existing software defined network (SDN) security prediction methods do not consider the attack cost and the impact of controller vulnerabilities on SDN security, a Bayesian attack graph-based algorithm to assessing SDN intrusion intent was proposed.The PageRank algorithm was used to obtain the criticality of the device, and combining with the vulnerability value, attack cost, attack benefit and attack preference, an attack graph was constructed, and a risk assessment model was established to predict the intrusion path.Through experimental comparison, it is obvious that the proposed model can more accurately predict the intrusion path, effectively ensure the accuracy of security prediction, and provide a basis for SDN defense.

SDN security prediction;intrusion intention;attack graph;PageRank algorithm

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords