Security modelling and analysis of dynamic enterprise networks

Simon Enoch Yusuf; Mengmeng Ge; Jin B. Hong; Huy Kang Kim; Paul Kim; Dong Seong Kim

doi:10.1109/CIT.2016.88

Security modelling and analysis of dynamic enterprise networks

Simon Enoch Yusuf, Mengmeng Ge, Jin B. Hong, Huy Kang Kim, Paul Kim, Dong Seong Kim

School of Cybersecurity

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

30 Citations (Scopus)

Abstract

Dynamic networks can be characterised by many factors such as changes (e.g., vulnerability change, update of applications and services, topology changes). It is of vital importance to assess the security of such dynamic networks in order to improve the security of them. One way to assess the security is to use a graphical security model. However, the existing graphical security models (e.g., attack graphs and attack trees) have only considered static networks (i.e. the network does not change). It is also unclear how the existing cyber security metrics (e.g., attack cost, shortest attack path) change when the network configuration changes over time. To address this problem, we propose (i) to develop a novel graphical security model named Temporal-Hierarchical Attack Representation Model (T-HARM) to capture network changes and (ii) investigate the effect of network change on the existing cyber security metrics based on the proposed security model. We show how the existing security metrics change when the status of vulnerabilities changes.

Original language	English
Title of host publication	Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	249-256
Number of pages	8
ISBN (Electronic)	9781509043149
DOIs	https://doi.org/10.1109/CIT.2016.88
Publication status	Published - 2017 Mar 10
Event	16th IEEE International Conference on Computer and Information Technology, CIT 2016 - Nadi, Fiji Duration: 2016 Dec 7 → 2016 Dec 10

Publication series

Name	Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016

Other

Other	16th IEEE International Conference on Computer and Information Technology, CIT 2016
Country/Territory	Fiji
City	Nadi
Period	16/12/7 → 16/12/10

Keywords

Attack graphs
Attack trees
Graphical security model
Security metrics

ASJC Scopus subject areas

Software
Computer Science Applications
Computer Networks and Communications
Information Systems
Safety, Risk, Reliability and Quality

Access to Document

10.1109/CIT.2016.88

Cite this

Yusuf, S. E., Ge, M., Hong, J. B., Kim, H. K., Kim, P., & Kim, D. S. (2017). Security modelling and analysis of dynamic enterprise networks. In Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016 (pp. 249-256). [7876345] (Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CIT.2016.88

Security modelling and analysis of dynamic enterprise networks. / Yusuf, Simon Enoch; Ge, Mengmeng; Hong, Jin B. et al.

Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016. Institute of Electrical and Electronics Engineers Inc., 2017. p. 249-256 7876345 (Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Yusuf, SE, Ge, M, Hong, JB, Kim, HK, Kim, P & Kim, DS 2017, Security modelling and analysis of dynamic enterprise networks. in Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016., 7876345, Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016, Institute of Electrical and Electronics Engineers Inc., pp. 249-256, 16th IEEE International Conference on Computer and Information Technology, CIT 2016, Nadi, Fiji, 16/12/7. https://doi.org/10.1109/CIT.2016.88

Yusuf SE, Ge M, Hong JB, Kim HK, Kim P, Kim DS. Security modelling and analysis of dynamic enterprise networks. In Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016. Institute of Electrical and Electronics Engineers Inc. 2017. p. 249-256. 7876345. (Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016). doi: 10.1109/CIT.2016.88

Yusuf, Simon Enoch ; Ge, Mengmeng ; Hong, Jin B. et al. / Security modelling and analysis of dynamic enterprise networks. Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 249-256 (Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016).

@inproceedings{4dcb314bb33c45c7a7baeb6f33d81a46,

title = "Security modelling and analysis of dynamic enterprise networks",

abstract = "Dynamic networks can be characterised by many factors such as changes (e.g., vulnerability change, update of applications and services, topology changes). It is of vital importance to assess the security of such dynamic networks in order to improve the security of them. One way to assess the security is to use a graphical security model. However, the existing graphical security models (e.g., attack graphs and attack trees) have only considered static networks (i.e. the network does not change). It is also unclear how the existing cyber security metrics (e.g., attack cost, shortest attack path) change when the network configuration changes over time. To address this problem, we propose (i) to develop a novel graphical security model named Temporal-Hierarchical Attack Representation Model (T-HARM) to capture network changes and (ii) investigate the effect of network change on the existing cyber security metrics based on the proposed security model. We show how the existing security metrics change when the status of vulnerabilities changes.",

keywords = "Attack graphs, Attack trees, Graphical security model, Security metrics",

author = "Yusuf, {Simon Enoch} and Mengmeng Ge and Hong, {Jin B.} and Kim, {Huy Kang} and Paul Kim and Kim, {Dong Seong}",

note = "Funding Information: This paper was made possible by Grant NPRP 8-531-1-111 from Qatar National Research Fund (QNRF). The statements made herein are solely the responsibility of the authors Publisher Copyright: {\textcopyright} 2016 IEEE.; 16th IEEE International Conference on Computer and Information Technology, CIT 2016 ; Conference date: 07-12-2016 Through 10-12-2016",

year = "2017",

month = mar,

day = "10",

doi = "10.1109/CIT.2016.88",

language = "English",

series = "Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "249--256",

booktitle = "Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016",

}

TY - GEN

T1 - Security modelling and analysis of dynamic enterprise networks

AU - Yusuf, Simon Enoch

AU - Ge, Mengmeng

AU - Hong, Jin B.

AU - Kim, Huy Kang

AU - Kim, Paul

AU - Kim, Dong Seong

N1 - Funding Information: This paper was made possible by Grant NPRP 8-531-1-111 from Qatar National Research Fund (QNRF). The statements made herein are solely the responsibility of the authors Publisher Copyright: © 2016 IEEE.

PY - 2017/3/10

Y1 - 2017/3/10

N2 - Dynamic networks can be characterised by many factors such as changes (e.g., vulnerability change, update of applications and services, topology changes). It is of vital importance to assess the security of such dynamic networks in order to improve the security of them. One way to assess the security is to use a graphical security model. However, the existing graphical security models (e.g., attack graphs and attack trees) have only considered static networks (i.e. the network does not change). It is also unclear how the existing cyber security metrics (e.g., attack cost, shortest attack path) change when the network configuration changes over time. To address this problem, we propose (i) to develop a novel graphical security model named Temporal-Hierarchical Attack Representation Model (T-HARM) to capture network changes and (ii) investigate the effect of network change on the existing cyber security metrics based on the proposed security model. We show how the existing security metrics change when the status of vulnerabilities changes.

AB - Dynamic networks can be characterised by many factors such as changes (e.g., vulnerability change, update of applications and services, topology changes). It is of vital importance to assess the security of such dynamic networks in order to improve the security of them. One way to assess the security is to use a graphical security model. However, the existing graphical security models (e.g., attack graphs and attack trees) have only considered static networks (i.e. the network does not change). It is also unclear how the existing cyber security metrics (e.g., attack cost, shortest attack path) change when the network configuration changes over time. To address this problem, we propose (i) to develop a novel graphical security model named Temporal-Hierarchical Attack Representation Model (T-HARM) to capture network changes and (ii) investigate the effect of network change on the existing cyber security metrics based on the proposed security model. We show how the existing security metrics change when the status of vulnerabilities changes.

KW - Attack graphs

KW - Attack trees

KW - Graphical security model

KW - Security metrics

UR - http://www.scopus.com/inward/record.url?scp=85017346105&partnerID=8YFLogxK

U2 - 10.1109/CIT.2016.88

DO - 10.1109/CIT.2016.88

M3 - Conference contribution

AN - SCOPUS:85017346105

T3 - Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016

SP - 249

EP - 256

BT - Proceedings - 2016 16th IEEE International Conference on Computer and Information Technology, CIT 2016, 2016 6th International Symposium on Cloud and Service Computing, IEEE SC2 2016 and 2016 International Symposium on Security and Privacy in Social Networks and Big Data, SocialSec 2016

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 16th IEEE International Conference on Computer and Information Technology, CIT 2016

Y2 - 7 December 2016 through 10 December 2016

ER -

Security modelling and analysis of dynamic enterprise networks

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this