Provided by: Science and Development Network (SciDev.Net)
When low level services suffer attacks, the high level services that depend on them will suffer from indirect threats. Most evaluation methods do not consider dependency relationships among services, lack the evaluation upon indirect threats, do not discuss the composition of multiple source threats. Upon these problems, an evaluation method that based on dependency analysis is presented. First, dependency relationships among services are identified from the management information of operating system and the monitoring records of network communication.