Xiaoyue Ge scite author profile

Xiaoyue Ge

3Publications

5Citation Statements Received

13Citation Statements Given

How they've been cited

How they cite others

Affiliations

PLA Information Engineering University

Publications

Order By: Most citations

An Improved Attack Path Discovery Algorithm Through Compact Graph Planning

Zang

Zhou

et al. 2019

IEEE Access

View full text Add to dashboard Cite

Attack path discovery plays an important role in protecting network infrastructure. Unfortunately, previous attack path discovery algorithms are difficult for applying in reality because of the high computational complexity problem. To achieve effective attack path discovery, we proposed a compact graph planning algorithm to incorporate goal states related information into attack path discovery. Our model extracts goal states related information by calculating closure of goal states, and then construct planning graph structure given the closure, after which the backward search algorithm is used to extract the attack path solution. The experiments were done on the typical enterprise network, comparing the effectiveness of attack path discovery algorithms with existing known methods. The result turns out that our proposed compact graph planning algorithm shows great improvement in discovering attack paths. INDEX TERMS Attack path discovery, graph planning, functional dependency theory, cyber security. I. INTRODUCTION With the increasing size and complexity of computer network, cyber security problem becomes more prominent than ever. Community Emergency Response Team(CERT) points out that global network security events increase exponentially from 2003 to 2018 [1]. To cope with the problem, attack paths discovery technology [2], which could discover hidden network vulnerabilities automatically, is widely adopted. As shown in Figure 1, attack paths discovery technology could not only find individual vulnerability existed in each host, but combinational vulnerabilities existed in whole network. Although tools like APT2 [3], Autosploit [4] and MulVAL [5] etc. have been developed to improve efficiency for discovering hidden attack paths, they are still far from reality because of two limitations. The first is that most of these tools, such as APT2, Autosploit and so on, aim at discovering individual vulnerabilities and fail in finding combinational vulnerabilities, and the second is that high computational complexity problem makes it hard to apply in large scale network. The associate editor coordinating the review of this manuscript and approving it for publication was Alba Amato.

show abstract

Defense Strategy Selection Method for Stackelberg Security Game Based on Incomplete Information

Zhou

Zang

2019

View full text Add to dashboard Cite

Prediction Method of Attack Behavior Based on Stackelberg Security Game

Zhou¹,

Ge²,

Zang³

et al. 2019

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Xiaoyue Ge

An Improved Attack Path Discovery Algorithm Through Compact Graph Planning

Defense Strategy Selection Method for Stackelberg Security Game Based on Incomplete Information

Prediction Method of Attack Behavior Based on Stackelberg Security Game

Contact Info

Product

Resources

About