Abstract
Model-based evaluation in cybersecurity has a long history. Attack Graphs (AGs) and Attack Trees (ATs) were the earlier developed graphical security models for cybersecurity analysis. However, they have limitations (e.g., scalability problem, state-space explosion problem, etc.) and lack the ability to capture other security features (e.g., countermeasures). To address the limitations and to cope with various security features, a graphical security model named attack countermeasure tree (ACT) was developed to perform security analysis by taking into account both attacks and countermeasures. In our research, we have developed different variants of a hierarchical graphical security model to solve the complexity, dynamicity, and scalability issues involved with security models in the security analysis of systems. In this paper, we summarize and classify security models into the following; graph-based, tree-based, and hybrid security models. We discuss the development of a hierarchical attack representation model (HARM) and different variants of the HARM, its applications, and usability in a variety of domains including the Internet of Things (IoT), Cloud, Software- Defined Networking, and Moving Target Defenses. Moreover, we discuss the pros and cons of each variant of HARM based on its applications and usage. Furthermore, several security metrics have been developed to be used with the graphical security model (including HARMs) to analyze the security posture of the systems and evaluate the effectiveness of defense mechanisms which is also being taken as input into optimization algorithms to compute optimal defense deployment. Thus, we provide the classification of the security metrics, including their discussions. Finally, we highlight existing problems and suggest future research directions in the area of graphical security models and applications. As a result of this work, a decision-maker can understand which type of HARM will suit their network or security analysis requirements.
| Original language | English |
|---|---|
| Title of host publication | The 67th Annual Reliability & Maintainability Symposium, RAMS 2021 |
| Editors | Joel Nachlas |
| Place of Publication | Piscataway NJ USA |
| Publisher | IEEE, Institute of Electrical and Electronics Engineers |
| Number of pages | 7 |
| ISBN (Electronic) | 9781728180175 |
| ISBN (Print) | 9781728180182 |
| DOIs | |
| Publication status | Published - 2021 |
| Externally published | Yes |
| Event | Annual Reliability and Maintainability Symposium (RAMS) 2021 - Orlando, United States of America Duration: 24 May 2021 → 27 May 2021 Conference number: 67th https://ieeexplore.ieee.org/xpl/conhome/9605695/proceeding?sortType=vol-only-seq&isnumber=9605657&rowsPerPage=100&pageNumber=2 (Proceedings) https://rams.org/ (Website) |
Publication series
| Name | Proceedings - Annual Reliability and Maintainability Symposium |
|---|---|
| Publisher | IEEE, Institute of Electrical and Electronics Engineers |
| Volume | 2021-May |
| ISSN (Print) | 0149-144X |
| ISSN (Electronic) | 0149-144X |
Conference
| Conference | Annual Reliability and Maintainability Symposium (RAMS) 2021 |
|---|---|
| Abbreviated title | RAMS 2021 |
| Country/Territory | United States of America |
| City | Orlando |
| Period | 24/05/21 → 27/05/21 |
| Internet address |
Keywords
- Attack Graphs
- Attack Trees
- Evaluation
- Moving Target Defense
- Security Metrics
Cite this
- APA
- Author
- BIBTEX
- Harvard
- Standard
- RIS
- Vancouver