ITM Web of Conferences (Jan 2017)

Construction of Index System Based on Advanced Persistent Threat

  • Lin Jia,
  • Jiang Rong,
  • Qi Yu-Lu,
  • Yang Shu-Qiang,
  • Li Ai-Ping

DOI
https://doi.org/10.1051/itmconf/20171203009
Journal volume & issue
Vol. 12
p. 03009

Abstract

Read online

With the proliferation of advanced persistent threat (APT), APT attack effect evaluation is playing an increasingly important role in cyberspace. As one of the hot issues of network security, the evaluation to its attack effect can quantify the harm caused by APT. Then according to the evaluation results, we can derive specific measures to the network attack. At present, a lot of work has done in the network attack effect evaluation index system. However, a significant barrier to the development of APT attack effect evaluation is that the existing index system is either from the point of view of the network security situation, or for a single attack weapons to customize. In this paper, an evaluation index system is proposed through analysing the features of APT. Through this index system, we can not only quantify APT attack effect, but also visually observe the APT ability from various angles. Then, we use the analytic hierarchy process (AHP) to model the evaluation process and calculate the weight of each indicator. Finally, the Ukrainian Power Outages is taken as an example to validate the proposed index system. The experimental results verify the effectiveness of the index system.