Security evaluation of cyber networks under advanced persistent threats
This work addresses security evaluation for cyber networks under persistent threats, but it appears incremental as it builds on existing modeling approaches without introducing a major breakthrough.
The paper tackled the problem of measuring security in cyber networks under advanced persistent threats by modeling the attack-defense process as a dynamical system and defining a new metric called limit security, which quantifies the expected fraction of compromised nodes, with theoretical analysis and simulations used to explore influencing factors.
This paper is devoted to measuring the security of cyber networks under advanced persistent threats (APTs). First, an APT-based cyber attack-defense process is modeled as an individual-level dynamical system. Second, the dynamic model is shown to exhibit the global stability. On this basis, a new security metric of cyber networks, which is known as the limit security, is defined as the limit expected fraction of compromised nodes in the networks. Next, the influence of different factors on the limit security is illuminated through theoretical analysis and computer simulation. This work helps understand the security of cyber networks under APTs.