An Approach for Internal Network Security Metric Based on Attack Probability

<table class="algorithm-group"><tr><td><table class="algorithm" id="pseudo1"><tr><td colspan="2"><b>Procedure IsAvailableMonitor</b></td></tr><tr><td colspan="2"><b>Input: AO, EO</b></td></tr><tr><td colspan="2">//AO - Sequence of attack evidence of a monitoring event node in the alarm log;</td></tr><tr><td colspan="2">//EO - Attack evidence sequence of the corresponding atomic attack action</td></tr><tr><td colspan="2"><b>Output: </b>The confidence value of the monitoring event node</td></tr><tr><td colspan="2"><b>Method:</b></td></tr><tr><td colspan="2">(01) String function(AO)</td></tr><tr><td colspan="2">(02) initialize EO</td></tr><tr><td colspan="2">(03) A= getS(AO)</td></tr><tr><td colspan="2">(04) t=0</td></tr><tr><td colspan="2">(05) S=<svg height="11.5564pt" id="M53" style="vertical-align:-2.26807pt" version="1.1" viewbox="-0.0498162 -9.28833 9.15546 11.5564" width="9.15546pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M293 -169V-141C218 -131 209 -90 209 -44C209 19 222 85 222 152C222 207 198 255 139 269V273C199 286 222 334 222 388C222 454 209 523 209 588C209 632 218 671 293 681V709C234 709 148 695 148 577C147 513 155 438 155 372C155 337 152 291 64 285V256C152 250 155 204 155 169C156 105 148 31 148 -41C148 -157 234 -169 293 -169Z" id="g113-124"></path></g><g transform="matrix(.013,0,0,-0.013,4.511,0)"><path d="M283 255V284C195 290 192 337 192 375C192 436 200 508 200 580C200 696 116 709 54 709V681C127 671 139 634 139 588C138 524 125 452 125 387C125 333 149 286 209 272V268C148 253 125 206 125 151C126 87 139 16 139 -47C139 -92 127 -131 54 -141V-169C115 -169 200 -152 200 -41C200 32 192 104 192 164C192 202 195 249 283 255Z" id="g113-126"></path></g></svg></td></tr><tr><td colspan="2">(06) for i=1:EO.size()</td></tr><tr><td colspan="2">(07)<span style="margin-left:1.1111111111111112em"></span> count=0;</td></tr><tr><td colspan="2">(08)<span style="margin-left:1.1111111111111112em"></span> for j=1:A.size()</td></tr><tr><td colspan="2">(09)<span style="margin-left:2.2222222222222223em"></span> n=j, m=i</td></tr><tr><td colspan="2">(10)<span style="margin-left:2.2222222222222223em"></span> while (A(n)==EO(m)  &amp;&amp;  m&lt;=A.size()&amp;&amp;n&lt;=EO.size())</td></tr><tr><td colspan="2">(11)<span style="margin-left:3.6666666666666665em"></span> count++, m++, n++;</td></tr><tr><td colspan="2">(12)<span style="margin-left:1.1111111111111112em"></span> t++;</td></tr><tr><td colspan="2">(13)<span style="margin-left:1.1111111111111112em"></span> S<svg height="11.5564pt" id="M54" style="vertical-align:-2.26807pt" version="1.1" viewbox="-0.0498162 -9.28833 13.1353 11.5564" width="13.1353pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M293 -169V-141C218 -131 209 -90 209 -44C209 19 222 85 222 152C222 207 198 255 139 269V273C199 286 222 334 222 388C222 454 209 523 209 588C209 632 218 671 293 681V709C234 709 148 695 148 577C147 513 155 438 155 372C155 337 152 291 64 285V256C152 250 155 204 155 169C156 105 148 31 148 -41C148 -157 234 -169 293 -169Z" id="g113-124"></path></g><g transform="matrix(.013,0,0,-0.013,4.511,0)"><path d="M298 36L289 62C276 55 253 45 228 45C202 45 169 60 169 141V397H276C289 405 292 426 282 437H169V574L155 576L90 509V437H45L17 408L21 397H90V107C90 28 125 -12 188 -12C198 -12 213 -8 230 1L298 36Z" id="g121-114"></path></g><g transform="matrix(.013,0,0,-0.013,8.476,0)"><path d="M283 255V284C195 290 192 337 192 375C192 436 200 508 200 580C200 696 116 709 54 709V681C127 671 139 634 139 588C138 524 125 452 125 387C125 333 149 286 209 272V268C148 253 125 206 125 151C126 87 139 16 139 -47C139 -92 127 -131 54 -141V-169C115 -169 200 -152 200 -41C200 32 192 104 192 164C192 202 195 249 283 255Z" id="g113-126"></path></g></svg>=count</td></tr><tr><td colspan="2">(14) f=max(S)</td></tr><tr><td colspan="2">(15) if (f&gt;= EO.size()) return True;</td></tr><tr><td colspan="2">(16) else return False;</td></tr></table></td></tr></table>

<div>The pseudocode of confidence analysis.</div>

Security and Communication Networks

psdc1

Pseudocode 1

Pseudocode 1: An Approach for Internal Network Security Metric Based on Attack Probability 