Change search
ReferencesLink to record
Permanent link

Direct link
Impact estimation using data flows over attack graphs
RISE, Swedish ICT, SICS. IAM.
Number of Authors: 1
2009 (English)Conference paper (Refereed)
Abstract [en]

We propose a novel approach to estimating the impact of an attack using a data model and an impact model on top of an attack graph. The data model describes how data flows between nodes in the network -- how it is copied and processed by softwares and hosts -- while the impact model models how exploitation of vulnerabilities affects the data flows with respect to the confidentiality, integrity and availability of the data. In addition, by assigning a loss value to a compromised data set, we can estimate the cost of a successful attack. We show that our algorithm not only subsumes the simple impact estimation used in the literature but also improves it by explicitly modeling loss value dependencies between network nodes. With our model, the operator will be able to use less time when comparing different security patches to a network.

Place, publisher, year, edition, pages
2009, 6. , 8 p.
Keyword [en]
Risk analysis, Network security, Attack graphs, Security metrics, Intrusion detection
National Category
Computer and Information Science
Identifiers
URN: urn:nbn:se:ri:diva-23661OAI: oai:DiVA.org:ri-23661DiVA: diva2:1042738
Conference
The 14th Nordic Conference on Secure IT Systems (NordSec 2009)
Projects
MONDISCNS
Available from: 2016-10-31 Created: 2016-10-31

Open Access in DiVA

fulltext(297 kB)2 downloads
File information
File name FULLTEXT01.pdfFile size 297 kBChecksum SHA-512
1b04b1bc5e288de48f18c732ae3a7c487214d1b2f5d85017ad9738da6617d11bffa2134809a9159fb613c341debff491e40bb7a044b365e80406a2e7429af23e
Type fulltextMimetype application/pdf

Other links

http
By organisation
SICS
Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 2 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 4 hits
ReferencesLink to record
Permanent link

Direct link