Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Using Network Tainting to Bound the Scope of Network Ingress Attacks

Published

Author(s)

Peter M. Mell, Richard Harang

Abstract

This research describes a novel security metric, network taint, which is related to software taint analysis. We use it here to bound the possible malicious influence of a known compromised node through monitoring and evaluating network flows. The result is a dynamically changing defense-in-depth map that shows threat level indicators gleaned from monotonically decreasing threat chains. We augment this analysis with concepts from the complex networks research area in forming dynamically changing security perimeters and measuring the cardinality of the set of threatened nodes within them. In providing this, we hope to advance network incident response activities by providing a rapid automated initial triage service that can guide and prioritize investigative activities.
Conference Dates
June 30-July 2, 2014
Conference Location
San Francisco, CA
Conference Title
Eighth International Conference on Software Security and Reliability (SERE 2014)

Keywords

network tainting, complex networks, scale-free, security
Created July 1, 2014, Updated November 10, 2018