A review of attack graph and attack tree visual syntax in cyber security
Perceiving and understanding cyber-attacks can be a difficult task, and more effective
techniques are needed to aid cyber-attack perception. Attack modelling techniques (AMTs) …
techniques are needed to aid cyber-attack perception. Attack modelling techniques (AMTs) …
A survey on systems security metrics
M Pendleton, R Garcia-Lebron, JH Cho… - ACM Computing Surveys …, 2016 - dl.acm.org
Security metrics have received significant attention. However, they have not been
systematically explored based on the understanding of attack-defense interactions, which …
systematically explored based on the understanding of attack-defense interactions, which …
DAG-based attack and defense modeling: Don't miss the forest for the attack trees
B Kordy, L Piètre-Cambacédès, P Schweitzer - Computer science review, 2014 - Elsevier
This paper presents the current state of the art on attack and defense modeling approaches
that are based on directed acyclic graphs (DAGs). DAGs allow for a hierarchical …
that are based on directed acyclic graphs (DAGs). DAGs allow for a hierarchical …
[PDF][PDF] A graph-based system for network-vulnerability analysis
C Phillips, LP Swiler - Proceedings of the 1998 workshop on New …, 1998 - dl.acm.org
This paper presents a graph-based approach to network vulnerability analysis. The method
is flexible, allowing analysis of attacks from both outside and inside the network. It can …
is flexible, allowing analysis of attacks from both outside and inside the network. It can …
Scalable, graph-based network vulnerability analysis
P Ammann, D Wijesekera, S Kaushik - … of the 9th ACM Conference on …, 2002 - dl.acm.org
Even well administered networks are vulnerable to attack. Recent work in network security
has focused on the fact that combinations of exploits are the typical means by which an …
has focused on the fact that combinations of exploits are the typical means by which an …
An attack graph-based probabilistic security metric
L Wang, T Islam, T Long, A Singhal… - Data and Applications …, 2008 - Springer
To protect critical resources in today's networked environments, it is desirable to quantify the
likelihood of potential multi-step attacks that combine multiple vulnerabilities. This now …
likelihood of potential multi-step attacks that combine multiple vulnerabilities. This now …
Model-based evaluation: from dependability to security
DM Nicol, WH Sanders… - IEEE Transactions on …, 2004 - ieeexplore.ieee.org
The development of techniques for quantitative, model-based evaluation of computer system
dependability has a long and rich history. A wide array of model-based evaluation …
dependability has a long and rich history. A wide array of model-based evaluation …
Computer-attack graph generation tool
LP Swiler, C Phillips, D Ellis… - … and Exposition II …, 2001 - ieeexplore.ieee.org
This paper presents a tool for assessment of security attributes and vulnerabilities in
computer networks. The tool generates attack graphs (Phillips and Swiler, 1998). Each node …
computer networks. The tool generates attack graphs (Phillips and Swiler, 1998). Each node …
Experimenting with quantitative evaluation tools for monitoring operational security
R Ortalo, Y Deswarte… - IEEE Transactions on …, 1999 - ieeexplore.ieee.org
This paper presents the results of an experiment in security evaluation. The system is
modeled as a privilege graph that exhibits its security vulnerabilities. Quantitative measures …
modeled as a privilege graph that exhibits its security vulnerabilities. Quantitative measures …
A taxonomy for attack graph generation and usage in network security
K Kaynar - Journal of Information Security and Applications, 2016 - Elsevier
Attack graphs model possible paths that a potential attacker can use to intrude into a target
network. They can be used in determining both proactive and reactive security measures …
network. They can be used in determining both proactive and reactive security measures …