research-article

Identifying a preferred countermeasure strategy for attack graphs

Authors:

Ganesh Ram Santhanam,

Zachary J. Oster,

Samik BasuAuthors Info & Claims

CSIIRW '13: Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop

Article No.: 11, Pages 1 - 4

https://doi.org/10.1145/2459976.2459988

Published: 08 January 2013 Publication History

Get Access

Abstract

Attack graphs capture sequences of actions that an intruder can take to lead the system to an undesirable state. They have proven to be important tools for administrators to analyse and devise countermeasures to be deployed in the face of an attack. We consider preferences over countermeasures that the administrator may hold when devising a strategy to thwart the attacker's goals. We present a formalism based on CI-nets to represent and reason about such preferences. We present a method to find an intervention strategy in terms of a set of countermeasures that is guaranteed to thwart any attack on the system, which is also most preferred.

References

[1]

Bouveret, S., Endriss, U., and Lang, J. Conditional importance networks: A graphical language for representing ordinal, monotonic preferences over sets of goods. In IJCAI (2009), pp. 67--72.

Digital Library

Google Scholar

[2]

Brafman, R. I., Domshlak, C., and Shimony, S. E. On graphical modeling of preference and importance. J. Artif. Intell. Res. (JAIR) 25 (2006), 389--424.

Digital Library

Google Scholar

[3]

Cimatti, A., Clarke, E., Giunchiglia, E., Giunchiglia, F., Pistore, M., Roveri, M., Sebastiani, R., and Tacchella, A. NuSMV Version 2: An OpenSource Tool for Symbolic Model Checking. In Computer-Aided Verification (2002), Springer.

Digital Library

Google Scholar

[4]

Clarke, E., Grumberg, O., and Peled, D. Model Checking. MIT Press, January 2000.

Digital Library

Google Scholar

[5]

Jha, S., Sheyner, O., and Wing, J. M. Two formal analyses of attack graphs. In CSFW (2002), pp. 49--63.

Digital Library

Google Scholar

[6]

Oster, Zachary J., S. G. R., and Basu, S. Automating analysis of qualitative preferences in goal-oriented requirements engineering. Tech. rep., Iowa State University, Dept of Computer Science, 2011.

Google Scholar

[7]

Oster, Z. J., Santhanam, G. R., and Basu, S. Automating analysis of qualitative preferences in goal-oriented requirements engineering. In ASE (2011), pp. 448--451.

Digital Library

Google Scholar

[8]

Sheyner, O., Haines, J. W., Jha, S., Lippmann, R., and Wing, J. M. Automated generation and analysis of attack graphs. In IEEE Symposium on Security and Privacy (2002), pp. 273--284.

Digital Library

Google Scholar

Cited By

View all

Le AEpiphaniou GMaple CKyriakopoulos KKiarie LAristodemou MPhillips IDehghantanha AParizi REpiphaniou G(2024)Automated APT Defense Using Reinforcement Learning and Attack Graph Risk-based Situation AwarenessProceedings of the Workshop on Autonomous Cybersecurity10.1145/3689933.3690834(23-33)Online publication date: 6-Nov-2024
https://dl.acm.org/doi/10.1145/3689933.3690834
Bitton RMaman NSingh IMomiyama SElovici YShabtai A(2023)Evaluating the Cybersecurity Risk of Real-world, Machine Learning Production SystemsACM Computing Surveys10.1145/355910455:9(1-36)Online publication date: 16-Jan-2023
https://dl.acm.org/doi/10.1145/3559104
Stan OBitton REzrets MDadon MInokuchi MOhta YYagyu TElovici YShabtai A(2022)Extending Attack Graphs to Represent Cyber-Attacks in Communication Protocols and Modern IT NetworksIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2020.304199919:3(1936-1954)Online publication date: 1-May-2022
https://doi.org/10.1109/TDSC.2020.3041999
Show More Cited By

Recommendations

Mobile Jamming Attack and its Countermeasure in Wireless Sensor Networks
AINAW '07: Proceedings of the 21st International Conference on Advanced Information Networking and Applications Workshops - Volume 01

Denial-of-Service (DoS) attacks are serious threats due to the resources constrained property in wireless sensor networks. Jamming attacks are the representative energy-consumption DoS attacks that can be launched easily. Hence, many countermeasures ...
Countermeasure Based on Smart Contracts and AI against DoS/DDoS Attack in 5G Circumstances
The development of 5G has substantially increased the destructiveness of DoS/DDoS attacks because the data processing capability of computers has not been accordingly enhanced, and this contradiction creates a vulnerability for attackers to compromise a ...
Data-Importance-Aware Attack Strategy Design and Secure Control Countermeasure
This paper is concerned with the security issues related to integrated attack-defense strategy for a category of multi-sensor networked control systems with state saturation constraints. In general, existing denial-of-service (DoS) attack models typically ...

Comments

Information & Contributors

Information

Published In

CSIIRW '13: Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop

January 2013

282 pages

ISBN:9781450316873

DOI:10.1145/2459976

Editors:
Frederick Sheldon
Oak Ridge National Laboratory
,
Annarita Giani
Los Alamos National Laboratory
,
Axel Krings
University of Idaho
,
Robert Abercrombie
Oak Ridge National Laboratory

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 08 January 2013

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Research-article

Conference

CSIIRW '13

Sponsor:

Los Alamos National Labs
Sandia National Labs
DOE
Lawrence Livermore National Lab.
BERKELEYLAB
Argonne Natl Lab
Idaho National Lab.
Nevada National Security Site

CSIIRW '13: Cyber Security and Information Intelligence

January 8 - 10, 2013

Tennessee, Oak Ridge, USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

7
Total Citations
View Citations
185
Total Downloads

Downloads (Last 12 months)10
Downloads (Last 6 weeks)3

Reflects downloads up to 07 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Le AEpiphaniou GMaple CKyriakopoulos KKiarie LAristodemou MPhillips IDehghantanha AParizi REpiphaniou G(2024)Automated APT Defense Using Reinforcement Learning and Attack Graph Risk-based Situation AwarenessProceedings of the Workshop on Autonomous Cybersecurity10.1145/3689933.3690834(23-33)Online publication date: 6-Nov-2024
https://dl.acm.org/doi/10.1145/3689933.3690834
Bitton RMaman NSingh IMomiyama SElovici YShabtai A(2023)Evaluating the Cybersecurity Risk of Real-world, Machine Learning Production SystemsACM Computing Surveys10.1145/355910455:9(1-36)Online publication date: 16-Jan-2023
https://dl.acm.org/doi/10.1145/3559104
Stan OBitton REzrets MDadon MInokuchi MOhta YYagyu TElovici YShabtai A(2022)Extending Attack Graphs to Represent Cyber-Attacks in Communication Protocols and Modern IT NetworksIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2020.304199919:3(1936-1954)Online publication date: 1-May-2022
https://doi.org/10.1109/TDSC.2020.3041999
Stan OBitton REzrets MDadon MInokuchi MOhta YYagyu TElovici YShabtai A(2021)Heuristic Approach for Countermeasure Selection Using Attack Graphs2021 IEEE 34th Computer Security Foundations Symposium (CSF)10.1109/CSF51468.2021.00003(1-16)Online publication date: Jun-2021
https://doi.org/10.1109/CSF51468.2021.00003
Rowe NRrushi JRowe NRrushi J(2016)Planning Cyberspace DeceptionIntroduction to Cyberdeception10.1007/978-3-319-41187-3_12(161-187)Online publication date: 24-Sep-2016
https://doi.org/10.1007/978-3-319-41187-3_12
Oster ZSanthanam GBasu S(2015)Scalable modeling and analysis of requirements preferences: A qualitative approach using CI-Nets2015 IEEE 23rd International Requirements Engineering Conference (RE)10.1109/RE.2015.7320425(214-219)Online publication date: Aug-2015
https://doi.org/10.1109/RE.2015.7320425
Baiardi FTonelli FBertolini ABertolotti R(2015)Iterative Selection of Cost-Effective Countermeasures for Intelligent Threat AgentsProceedings of the 2015 23rd Euromicro International Conference on Parallel, Distributed, and Network-Based Processing10.1109/PDP.2015.20(595-599)Online publication date: 4-Mar-2015
https://dl.acm.org/doi/10.1109/PDP.2015.20

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Recommendations

Mobile Jamming Attack and its Countermeasure in Wireless Sensor Networks

Countermeasure Based on Smart Contracts and AI against DoS/DDoS Attack in 5G Circumstances

Data-Importance-Aware Attack Strategy Design and Secure Control Countermeasure

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations