kth.se
EnglishSvenskaNorsk
Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
DefenceRank - Ranking Based Attack Graph Analysis and Defence Prioritization
KTH, Skolan för elektroteknik och datavetenskap (EECS), Datavetenskap, Nätverk och systemteknik.ORCID-id: 0000-0003-0479-6766
KTH, Skolan för teknikvetenskap (SCI), Matematik (Inst.), Matematik (Avd.).
KTH, Skolan för elektroteknik och datavetenskap (EECS), Datavetenskap, Nätverk och systemteknik.ORCID-id: 0000-0002-2764-8099
2024 (engelsk)Inngår i: 2024 IEEE INTERNATIONAL CONFERENCE ON CYBER SECURITY AND RESILIENCE, CSR, Institute of Electrical and Electronics Engineers (IEEE), 2024, s. 466-473Konferansepaper, Publicerat paper (Fagfellevurdert)
Abstract [en]

Cyberinfrastructures are becoming larger and more complex, and it is increasingly challenging to assess for potential attacks and activate the appropriate defences. Attack graphs have been proven as a promising tool for risk assessment, but they also face the challenge of scalability. This paper proposes DefenceRank, an adaptation of Google's PageRank algorithm, to analyze large attack graphs and prioritize defences with low complexity. It incorporates the difficulty of the attack steps through the time-to-compromise parameter, the capabilities of the attack steps and the vulnerability of the assets. The proposed DefenceRank is evaluated on various realistic attack graphs. The results show that it achieves a reasonably high level of accuracy compared to optimal defence selection, while its time complexity increases polynomially with the size of the attack graph and remains in the order of seconds even for very large graphs and a large set of defences. In conclusion, DefenceRank demonstrates a viable alternative for the security assessment of cyberinfrastructures represented by attack graphs.
sted, utgiver, år, opplag, sider
Institute of Electrical and Electronics Engineers (IEEE), 2024. s. 466-473
HSV kategori
Identifikatorer
URN: urn:nbn:se:kth:diva-356460DOI: 10.1109/CSR61664.2024.10679390ISI: 001327167900070Scopus ID: 2-s2.0-85206202681OAI: oai:DiVA.org:kth-356460DiVA, id: diva2:1914457
Konferanse
4th IEEE Annual International Conference on Cyber Security and Resilience (IEEE CSR), SEP 02-04, 2024, London, ENGLAND
Merknad

QC 20241119

Part of ISBN 979-8-3503-7536-7

Tilgjengelig fra: 2024-11-19 Laget: 2024-11-19 Sist oppdatert: 2024-11-19bibliografisk kontrollert

Open Access i DiVA

Fulltekst mangler i DiVA

Andre lenker

Forlagets fulltekstScopus

Person

Fodor, Viktória

Søk i DiVA

Av forfatter/redaktør
Patil, Rajendra ShivajiKällman, IsakFodor, Viktória
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric

doi
urn-nbn
Totalt: 70 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
KTH Bibliotek
|
DiVA support
|
Registrera i DiVA
|
SwePub