Table of Contents Author Guidelines Submit a Manuscript
Journal of Computer Networks and Communications
Volume 2014 (2014), Article ID 818957, 13 pages
Review Article

Use of Attack Graphs in Security Systems

1Department of Computer Science, University of Memphis, Memphis, TN 38152, USA
2School of Computing and Informatics, Lipscomb University, Nashville, TN 37204, USA

Received 22 June 2014; Revised 29 September 2014; Accepted 29 September 2014; Published 20 October 2014

Academic Editor: Tzonelih Hwang

Copyright © 2014 Vivek Shandilya et al. This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.


Attack graphs have been used to model the vulnerabilities of the systems and their potential exploits. The successful exploits leading to the partial/total failure of the systems are subject of keen security interest. Considerable effort has been expended in exhaustive modeling, analyses, detection, and mitigation of attacks. One prominent methodology involves constructing attack graphs of the pertinent system for analysis and response strategies. This not only gives the simplified representation of the system, but also allows prioritizing the security properties whose violations are of greater concern, for both detection and repair. We present a survey and critical study of state-of-the-art technologies in attack graph generation and use in security system. Based on our research, we identify the potential, challenges, and direction of the current research in using attack graphs.