当前位置: X-MOL 学术J. Inf. Secur. Appl. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Stateful RORI-based countermeasure selection using hypergraphs
Journal of Information Security and Applications ( IF 3.8 ) Pub Date : 2020-07-02 , DOI: 10.1016/j.jisa.2020.102562
Gustavo Gonzalez-Granadillo , Elena Doynikova , Joaquin Garcia-Alfaro , Igor Kotenko , Andrey Fedorchenko

Cost-sensitive metrics have been widely used during the past years as financial metrics that quantify the monetary costs and benefits of security investments, assess risks, and select countermeasures accordingly. However, due to the complexity of current attacks, and the level of dynamicity required in the estimation of the parameters composing the metrics, the use of a novel approach that considers restrictions, inter-dependency, as well as, the previous and current state at which the system is exposed to, is required. We propose in this article a Stateful Return on Response Investment (denoted by StRORI) that uses hypergraphs to model actions that have been previously deployed (e.g., at state ST0) while the current state of the system (e.g., ST1) is under analysis. As a result, StRORI is a dynamic tool that considers the changes of the system in terms of number of active devices, previously deployed countermeasures, the cost of adding a new countermeasure or suppressing a previously deployed one, and the effectiveness of a group of security measures due to the implementation of a given action. A case study is presented about the integration of the StRORI index with hypergraph models to assess countermeasures against cyber attacks.



中文翻译:

使用超图基于状态RORI的对策选择

成本敏感指标在过去几年中已广泛用作财务指标,用于量化安全投资的货币成本和收益,评估风险并相应选择对策。但是,由于当前攻击的复杂性,以及在估算构成指标的参数时所需的动态性水平,因此使用了一种新颖的方法,该方法考虑了限制,相互依赖性以及之前和当前的状态是系统所必需的。我们在本文中提出了状态响应投资回报(由StRORI表示),该投资使用超图来建模系统当前状态(例如ST 1)之前已部署(例如状态ST 0)的操作。)正在分析中。因此,StRORI是一种动态工具,可以根据活动设备的数量,先前部署的对策,添加新对策或抑制先前部署的对策的成本以及一组安全性的有效性来考虑系统的变化。因执行特定措施而采取的措施。案例研究介绍了StRORI索引与超图模型的集成,以评估针对网络攻击的对策。

更新日期:2020-07-02
down
wechat
bug