A risk-driven security analysis method and modelling language

Kearney, Paul; Brügger, Lukas

doi:10.1007/s10550-007-0016-6

Cited by 6 publications

(3 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Modelling frameworks using such languages have been developed, and in a paper of Kearney the dynamic aspects of risk management are discussed [15].…”

Section: Related Workmentioning

confidence: 99%

Adaptive Risk Management with Ontology Linked Evidential Statistics and SDN

Juhola

Ahola

2014

Proceedings of the 2014 European Conference on Software Architecture Workshops

View full text Add to dashboard Cite

New technologies have increased the dynamism of distributed systems; advances such as Software Defined Networking (SDN) and cloud computing enable unprecedented service flexibility and scalability. By their nature, they are in a constant state of flux, presenting tough challenges for system security. Here an adaptive -in real time -risk management system capable of keeping abreast of these developments is considered. This paper presents an on-going work on combining a hierarchical threat ontology, real-time risk analysis, and SDN to an efficient whole. The main contribution of this paper is on finding the suitable architectures, components, necessary requirements, and favorable modifications on the systems and system modelling (including the models involving the security analysis) to reach this goal.

show abstract

“…Modelling frameworks using such languages have been developed, and in a paper of Kearney the dynamic aspects of risk management are discussed [15].…”

Section: Related Workmentioning

confidence: 99%

Adaptive Risk Management with Ontology Linked Evidential Statistics and SDN

Juhola

Ahola

2014

Proceedings of the 2014 European Conference on Software Architecture Workshops

View full text Add to dashboard Cite

show abstract

“…The first step towards security modeling involves designing a scalable model 1, 2 that helps quantify security 3 in terms of key attributes such as the loss caused by attacks 4, 5 or the gain accrued from enforcing a security countermeasure 6. This will aid not only in probabilistic risk analysis (PRA) of a system but also in the development of a scheme as to where in the system, security investment should be prioritized.…”

Section: Introductionmentioning

confidence: 99%

Attack countermeasure trees (ACT): towards unifying the constructs of attack and defense trees

Roy¹,

Kim²,

Trivedi³

2011

Security Comm Networks

140

119

View full text Add to dashboard Cite

Attack tree (AT) is one of the widely used non‐state‐space models for security analysis. The basic formalism of AT does not take into account defense mechanisms. Defense trees (DTs) have been developed to investigate the effect of defense mechanisms using measures such as attack cost, security investment cost, return on attack (ROA), and return on investment (ROI). DT, however, places defense mechanisms only at the leaf nodes and the corresponding ROI/ROA analysis does not incorporate the probabilities of attack. In attack response tree (ART), attack and response are both captured but ART suffers from the problem of state‐space explosion, since solution of ART is obtained by means of a state‐space model. In this paper, we present a novel attack tree paradigm called attack countermeasure tree (ACT) which avoids the generation and solution of a state‐space model and takes into account attacks as well as countermeasures (in the form of detection and mitigation events). In ACT, detection and mitigation are allowed not just at the leaf node but also at the intermediate nodes while at the same time the state‐space explosion problem is avoided in its analysis. We study the consequences of incorporating countermeasures in the ACT using three case studies (ACT for BGP attack, ACT for a SCADA attack and ACT for malicious insider attacks). Copyright © 2011 John Wiley & Sons, Ltd.

show abstract

“…It uses a risk documentation framework based on RM-ODP together with an integrated risk management and system development process based on UP and offers a platform for tool inclusion based on XML. In another approach (Baldwin, Beres, Shiu & Kearney, 2006;Kearney & Brügger, 2007) use UML for risk-driven security analysis that focuses on the assessment of risk and analysis of requirements for operational risk management.…”

Section: Model-based Developmentmentioning

confidence: 99%

Identification of Vulnerabilities in Web Services using Model-Based Security

Höhn¹,

Lowis²,

Jürjens

et al.

Web Services Security Development and Architecture

View full text Add to dashboard Cite

In a service-oriented architecture, business processes are executed as composition of services, which can suffer from vulnerabilities. These vulnerabilities in services and the underlying software applications put at risk computer systems in general and business processes in particular. Current vulnerability analysis approaches involve several manual tasks and, hence, are error-prone and costly. Service-oriented architectures impose additional analysis complexity as they provide much flexibility and frequent changes within orchestrated processes and services. Therefore, it is inevitable to provide tools and mechanisms that enable efficient and effective management of vulnerabilities within these complex systems. Model-based security engineering is a promising approach that can help to fill the gap between vulnerabilities on the one hand, and concrete protection mechanisms on the other. The authors present an approach that integrates model-based engineering and vulnerability analysis in order to cope with the security challenges of a service-oriented architecture.

show abstract

A risk-driven security analysis method and modelling language

Cited by 6 publications

References 14 publications

Adaptive Risk Management with Ontology Linked Evidential Statistics and SDN

Adaptive Risk Management with Ontology Linked Evidential Statistics and SDN

Attack countermeasure trees (ACT): towards unifying the constructs of attack and defense trees

Identification of Vulnerabilities in Web Services using Model-Based Security

Contact Info

Product

Resources

About