Advances in Topological Vulnerability Analysis

Noel, Steven; Elder, Matthew; Jajodia, Sushil; Kalapa, Pramod; O'Hare, Scott; Prole, Kenneth

doi:10.1109/catch.2009.19

Cited by 56 publications

(29 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Tools to perform an attack graph based security analysis are described by Ou et al (2005); Lippmann et al (2006); Noel et al (2009);Jajodia et al (2011). It is typical for these approaches to separate the system model generation from the model analysis.…”

Section: Example 13mentioning

confidence: 99%

Adaptive Modelling for Security Analysis of Networked Control Systems

Wolf¹,

Wiezorek²,

Schiller³

et al. 2016

Electronic Workshops in Computing

View full text Add to dashboard Cite

Incomplete information about connectivity and functionality of elements of networked control systems is a challenging issue in applying model-based security analysis in practice. This issue can be addressed by modelling techniques providing inherent mechanisms to describe incomplete information. We present and exemplary demonstrate a new, ontology-based method to adaptively model and analyse networked control systems from a security perspective. Our method allows modelling different parts of the system with different levels of detail. We include a formalism to handle incomplete information by applying iterative extension and iterative refinement of the model where necessary. By using machine-based reasoning on an ontology model of the system, security-relevant information is deduced. During this process, non-obvious attack vectors are identified using a structural analysis of the model and by connecting the model to vulnerability information.

show abstract

Section: Example 13mentioning

confidence: 99%

Adaptive Modelling for Security Analysis of Networked Control Systems

Wolf¹,

Wiezorek²,

Schiller³

et al. 2016

Electronic Workshops in Computing

View full text Add to dashboard Cite

show abstract

“…Another recent work combines attack trees with Markov processes [17]. Noel et al [18] insert a variety of information gathered by life-systems into their otherwise static attack graph based topological vulnerability analysis. While such works give static probabilities to events representing e.g.…”

Section: Introductionmentioning

confidence: 99%

A property based security risk analysis through weighted simulation

Winkelvos

Rudolph

Repp

2011

2011 Information Security for South Africa

View full text Add to dashboard Cite

Abstract-The estimation of security risks in complex information and communication technology systems is an essential part of risk management processes. A proper computation of risks requires a good knowledge about the probability distributions of different upcoming events or behaviours. Usually, technical risk assessment in Information Technology (IT) systems is concerned with threats to specific assets. However, for many scenarios it can be useful to consider the risk of the violation of particular security properties. The set of suitable qualities comprises authenticity of messages or non-repudiability of actions within the system but also more general security properties like confidentiality of data. Furthermore, as current automatic security analysis tools are mostly confined to a technical point of view and thereby missing implications on an application or process level, it is of value to facilitate a broader view including the relation between actions within the IT system and their external influence. The property based approach aims to help assessing risks in a process-oriented or service level view of a system and also to derive a more detailed estimation on a technical level.Moreover, as systems' complexities are growing, it becomes less feasible to calculate the probability of all patterns of a system's behaviour. Thus, a model based simulation of the system is advantageous in combination with a focus on precisely defined security properties. This paper introduces the first results supporting a simulation based risk analysis tool that enables a security property oriented view of risk. The developed tool is based on an existing formal validation, verification and simulation tool, the Simple Homomorphism Verification Tool (SHVT). The new simulation software provides a graphical interface for a monitor automaton which facilitates the explicit definition of security properties to be investigated during the simulation cycles. Furthermore, in order to model different likelihoods of actions in a system, weighting factors can be used to sway the behaviour where the occurrence of events is not evenly distributed. These factors provide a scheme for weighting classes of transitions. Therefore, the tool facilitates probabilistic simulation, providing information about the probability distribution of satisfaction or violation of specified properties.

show abstract

“…MsAMS contributes to the field of Attack Graphs, an active area of research and development. For example, very recently two prominent approaches reviewed in Chapter 2 have turned commercial: NetSPA that became GARNET [229], and CAULDRON [155]. This is an indication that Attack Graphs, although not a silver bullet for information security, raise market as well as academic interest.…”

Section: Resultsmentioning

confidence: 99%

“…In this section, we evaluate this complexity using our benchmark of tests with practical values of n, similar to other authors in the field of Attack Graphs, e.g. [155,164].…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

finding multi-step attacks in computer networks using heuristic search and mobile ambients

Franqueira¹

View full text Add to dashboard Cite

Advances in Topological Vulnerability Analysis

Cited by 56 publications

References 16 publications

Adaptive Modelling for Security Analysis of Networked Control Systems

Adaptive Modelling for Security Analysis of Networked Control Systems

A property based security risk analysis through weighted simulation

finding multi-step attacks in computer networks using heuristic search and mobile ambients

Contact Info

Product

Resources

About