CVSS Based Attack Analysis Using a Graphical Security Model: Review and Smart Grid Case Study

Le, Tan Duy; Ge, Mengmeng; Hoang, Hien Do; Anwar, Adnan; Loke, Seng W.; Beuran, Răzvan; Tan, Yasuo

doi:10.1007/978-3-030-69514-9_11

Cited by 4 publications

(3 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Regarding the severity of vulnerability nodes being attacked, it is related to the vulnerability severity. The exploitability and severity of each vulnerability are assessed using the Common Vulnerability Scoring System (CVSS) [36], which provides a method for capturing the fundamental characteristics of a vulnerability and assigning it a numerical score that reflects its exploitability and severity.…”

Section: B Strategy Of Searching For Attack Paths and Patch Setsmentioning

confidence: 99%

“…The vulnerabilities corresponding to CVEs (Common Vulnerabilities and Exposures) are shown in Table II [40]. In CVSS [36], the Base Score serves as an indicator of the severity of a vulnerability based on its intrinsic characteristics, which remain constant over time. Moreover, it assumes a reasonable worst-case scenario in terms of the impact across various deployed environments.…”

Section: A Network Structurementioning

confidence: 99%

See 1 more Smart Citation

Study on the Application of Graph Theory Algorithms and Attack Graphs in Cybersecurity Assessment

Zhang,

Wang,

Zio

2023

2023 7th International Conference on System Reliability and Safety (ICSRS)

View full text Add to dashboard Cite

Postulating the behavior of attackers is important in the design of cybersecurity protection measures. Attack graph is a technique employed for this purpose, which aids in identifying and modeling the potential attack paths an attacker could take to gain unauthorized access to a cyber network, exploit vulnerabilities, and compromise the system's confidentiality, integrity, and availability. In this study, we propose a framework aimed at identifying potential attack paths and determining the shortest path with the highest probability of a successful attack. Meanwhile, based on the attack graph determine the minimum patch sets with the most severity to protect the network security. Common Vulnerability Scoring System (CVSS) is utilized to quantify the exploitability and severity of each vulnerability. The Dijkstra algorithm is utilized to calculate the shortest path with the highest probability, and the Stoer-Wagner algorithm is utilized to calculate the minimum patch sets with the most severity. To demonstrate the proposed framework, we apply it to a simplified SCADA system within a corporate network susceptible to cyber attacks.

show abstract

Section: B Strategy Of Searching For Attack Paths and Patch Setsmentioning

confidence: 99%

Section: A Network Structurementioning

confidence: 99%

Study on the Application of Graph Theory Algorithms and Attack Graphs in Cybersecurity Assessment

Zhang,

Wang,

Zio

2023

2023 7th International Conference on System Reliability and Safety (ICSRS)

View full text Add to dashboard Cite

show abstract

“…The second methodology used was the common vulnerability score system, CVSS (2.2), adopted for prioritizing the severity of the potential impact of vulnerabilities. This tool provides a systematic approach to assessing the severity of vulnerabilities using weights [61] ranging from zero to three (no severity and high severity, respectively) and is commonly used with other methodologies such as common vulnerabilities exposure (CVE) [62][63][64]. Therefore, due to not being a tool that classifies or proposes attack vectors, it is very commonly used in conjunction with other threat modeling methodologies (TMMs) during the threat assessment process in a project.…”

mentioning

confidence: 99%

A Formal Verification of a Reputation Multi-Factor Authentication Mechanism for Constrained Devices and Low-Power Wide-Area Network Using Temporal Logic

Bezerra

Martina

Westphall

2023

Sensors

View full text Add to dashboard Cite

There are many security challenges in IoT, especially related to the authentication of restricted devices in long-distance and low-throughput networks. Problems such as impersonation, privacy issues, and excessive battery usage are some of the existing problems evaluated through the threat modeling of this work. A formal assessment of security solutions for their compliance in addressing such threats is desirable. Although several works address the verification of security protocols, verifying the security of components and their non-locking has been little explored. This work proposes to analyze the design-time security of the components of a multi-factor authentication mechanism with a reputation regarding security requirements that go beyond encryption or secrecy in data transmission. As a result, it was observed through temporal logic that the mechanism is deadlock-free and meets the requirements established in this work. Although it is not a work aimed at modeling the security mechanism, this document provides the necessary details for a better understanding of the mechanism and, consequently, the process of formal verification of its security properties.

show abstract

Towards Developing an Asset-Criticality Identification Framework in Smart Grids

Alrowaili,

Saxena,

Burnap

2024

2024 IEEE International Conference on Cyber Security and Resilience (CSR)

View full text Add to dashboard Cite

Smart Grids combine advanced communication technologies with traditional power systems, enhancing performance and reliability but also introducing cyber and physical vulnerabilities. This paper presents a comprehensive framework to identify and prioritize key assets within these interconnected layers. The proposed framework employs graph-based integration to create nodes for cyber hosts and vulnerabilities, as well as power system components, assigning specific attributes to each. The framework establishes clear connections between cyber assets and power system elements by prioritizing cyber vulnerabilities through impact scores and graph metrics like closeness centrality and identifying key power components using electric degree and betweenness centrality. Scenario simulations are utilized to evaluate the impacts of disruptions across layers, revealing potential attack pathways and assessing associated risks. This integrated approach offers a detailed analysis of interconnected vulnerabilities, aiding in the development of targeted mitigation strategies to enhance the security of the overall smart grids.

show abstract

CVSS Based Attack Analysis Using a Graphical Security Model: Review and Smart Grid Case Study

Cited by 4 publications

References 22 publications

Study on the Application of Graph Theory Algorithms and Attack Graphs in Cybersecurity Assessment

Study on the Application of Graph Theory Algorithms and Attack Graphs in Cybersecurity Assessment

A Formal Verification of a Reputation Multi-Factor Authentication Mechanism for Constrained Devices and Low-Power Wide-Area Network Using Temporal Logic

Towards Developing an Asset-Criticality Identification Framework in Smart Grids

Contact Info

Product

Resources

About