Reference : Model-driven situational awareness for moving target defense
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
Security, Reliability and Trust
Model-driven situational awareness for moving target defense
Jhawar, Ravi mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Mauw, Sjouke mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Proc. 16th European Conference on Cyber Warfare and Security
Scanlon, Marc
Le-Khac, Nhien-An
16th European Conference on Cyber Warfare and Security (ECCWS'17)
June 29-30 2017
[en] Moving Target Defense (MTD) presents dynamically changing attack surfaces and system configurations to attackers. This approach decreases the success probabilities of attacks and increases attacker's workload since she must continually re-assess, re-engineer and re-launch her attacks. Existing research has provided a number of MTD techniques but approaches for gaining situational awareness and deciding when/how to apply these techniques are not well studied. In this paper, we present a conceptual framework that closely integrates a set of models with the system and obtains up-to-date situational awareness following the OODA loop methodology. To realize the framework, as the first step, we propose a modelling approach that provides insights about the dynamics between potential attacks and defenses, impact of attacks and adaptations on the system, and the state of the system. Based on these models, we demonstrate techniques to quantitatively assess the effectiveness of MTD and show how to formulate decision-making problems.
FnR ; FNR5809105 > Sjouke Mauw > ADT2P > Attack-Defence Trees: Theory Meets Practice > 01/07/2014 > 30/06/2017 > 2013

File(s) associated to this reference

Fulltext file(s):

Open access
JhM17.pdfAuthor preprint599.88 kBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.