Login | Register

A Unified Framework for Measuring a Network's Mean Time-to-Compromise


A Unified Framework for Measuring a Network's Mean Time-to-Compromise

Nzoukou Tankou, William (2013) A Unified Framework for Measuring a Network's Mean Time-to-Compromise. Masters thesis, Concordia University.

Text (application/pdf)
Nzoukou_MASc_S2013.pdf - Accepted Version
Available under License Spectrum Terms of Access.


Measuring the mean time-to-compromise provides important insights for understanding a network's weaknesses and for guiding corresponding defense approaches. Most existing network security metrics only deal with the threats of known vulnerabilities and cannot handle zero day attacks with consistent semantics. In this thesis, we propose a unified framework for measuring a network's mean time-to-compromise by considering both known, and zero day attacks. Specifically, we first devise models of the mean time for discovering and exploiting individual vulnerabilities. Unlike existing approaches, we replace the generic state transition model with a more vulnerability-specific graphical model. We then employ Bayesian networks to derive the overall mean time-to-compromise by aggregating the results of individual vulnerabilities. Finally, we demonstrate the framework's practical application to network hardening through case studies.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Concordia Institute for Information Systems Engineering
Item Type:Thesis (Masters)
Authors:Nzoukou Tankou, William
Institution:Concordia University
Degree Name:M.A. Sc.
Program:Information Systems Security
Date:10 July 2013
Thesis Supervisor(s):Wang, Lingyu
ID Code:977428
Deposited On:25 Nov 2013 17:36
Last Modified:18 Jan 2018 17:44
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Back to top Back to top