Attack countermeasure trees (ACT): Towards unifying the constructs of attack and defense trees

Security and Communication Networks

Volumn 5, Issue 8, 2012, Pages 929-943

  Roy, Arpan ^a   Kim, Dong Seong ^a   Trivedi, Kishor S ^a  

^a Duke University   (United States)

Author keywords

Attack trees; Mincuts; Non state space model; Return on attack; Return on investment

Indexed keywords

INVESTMENTS; NETWORK SECURITY; PROFITABILITY; STATE SPACE METHODS;

ATTACK TREE; MINCUTS; RE-TURN-ON; RETURN ON INVESTMENTS; STATE - SPACE MODELS;

FORESTRY;

FORESTRY; INVESTMENT; MODELS; PROFITABILITY; TREES;

EID: 84864293887     PISSN: 19390114     EISSN: 19390122     Source Type: Journal    
DOI: 10.1002/sec.299     Document Type: Article

References (36)

1. Ortalo R, Deswarte Y, Kaâniche M. Experimenting with quantitative evaluation tools for monitoring operational security. IEEE Transactions on Software Engineering 1999; 25(5): 633-650.
2. Schneier B. Secrets and Lies: Digital Security in a Networked World. John Wiley and Sons Inc.: New York, NY, USA, 2000.
3. Trivedi KS, Kim DS, Roy A, Medhi D. Dependability and security models. In Proceedings of DRCN, IEEE, 2009, 11-20.
4. Cremonini M, Martini P. Evaluating information security investments from attackers perspective: the Return-On-Attack (ROA). In Proceedings of Fourth Workshop on the Economics of Information Security, 2005.
5. Kearney P, Brügger L. A risk-driven security analysis method and modelling language. BT Technology Journal 2007; 25(1): 141-153.
6. Sonnenreich W, Albanese J, Stout B. Return on security investment (ROSI): a practical quantitative model. Journal of Research and Practice in Information Technology 2006; 38(1): 45-56.
7. Moore AP, Ellison RJ, Linger RC. "Attack Modeling for Information Security and Survivability, " CMU/SEI-2001-TN-001, 2001.
8. Bistarelli S, Aglio MD, Peretti P. Strategic games on defense trees. Lecture Notes on Computer Science 2007; 4691: 1-15.
9. Bistarelli S, Peretti P, Trubitsyna I. Defense trees for economic evaluation of security investments. In Proceedings of ARES, 2006; 8-15.
10. Zonouz SA, Khurana H, Sanders WH, Yardley TM. RRE: a game-theoretic intrusion response and recovery engine. In Proceedings of DSN, 2009; 439-448.
11. Sondik E. "The optimal control of partially observable Markov processes, " Ph.D. dissertation, Stanford Univ. Electronics Labs, 1971.
12. Sahner R, Trivedi KS, Puliafito A. Performance and Reliability Analysis of Computer Systems: An Example-Based Approach Using the SHARPE Software Package. Kluwer Academic: Norwell, Massachusetts, USA, 1999.
13. Trivedi KS, Sahner R. Sharpe at the age of twenty two. ACM SIGMETRICS Performance Evaluation Review 2009; 36(4): 52-57.
14. Convery S, Cook D, Franz M. An Attack Tree for the Border Gateway Protocol. Cisco Internet Draft, 2002.
15. Baker GH, Berg A. Supervisory Control and Data Acquisition (SCADA) Systems. The Critical Infrastructure Protection Report 1.6, 2002.
16. Butts J, Mills R, Baldwin R. Developing an insider threat model using functional decomposition. Computer Network Security 2005; LNCS 3685: 412-417.
17. Weiss JD. A system security engineering process. In Proceedings of the 14th National Computer Security Conference, 1991.
18. Amoroso EG. Fundamentals of Computer Security Technology. Prentice-Hall, Inc.: Upper Saddle River, NJ, USA, 1994.
19. Mauw S, Oostdijk M. Foundations of attack trees. Lecture Notes on Computer Science 2006; 3935: 186-198.
20. Daley K, Larson R, Dawkins J. A structural framework for modeling multi-stage network attacks. In Proceedings of ICPPW, 2002; 1530-1536.
21. Fovino IN, Masera M, Cian AD. Integrating cyber attacks within fault trees. Reliability Engineering & System Safety 2009; 94(9): 1394-1402.
22. Edge KS. "A Framework for Analyzing and Mitigating the Vulnerabilities of Complex Systems via Attack and Protection Trees, " Ph.D. dissertation, Air Force Institute of Technology, 2007.
23. Gan Z, Tang J, Wu P, Varadharajan V. A novel security risk evaluation for information systems. In Proceedings of FCST, 2007; 67-73.
24. Kuhn R, Sriram K, Montgomery D. Border gateway protocol security: Recommendations of the national institute of standards and technology. NIST Special Publication 800-54, 2007.
25. Hu X, Mao ZM. Accurate real-time identification of IP prefix hijacking. In Proceedings of IEEE S & P, 2007; 3-17.
26. Meng FC. Comparing the importance of system components by some structural characteristics. IEEE Transactions on Reliability, 1996; 45(1): 59-65.
27. Boland PJ, Proschan F, Tong YL. Optimal arrangement of components via pairwise rearrangements. Naval Research Logistics 1989; 36(6): 807-815.
28. Fricks RM, Trivedi KS. Importance analysis with Markov chains. In Proceedings of Reliability and Maintainability Symposium IEEE, 2003; 89-95.
29. Nicol DM, Sanders WH, Trivedi KS. Model-based evaluation: From dependability to security. IEEE Transactions on Dependable and Secure Computing 2004; 1(1): 48-65.
30. A. Technologies, "Securitree, " 2002.
31. Olzak T. "A Practical Approach to Threat Modeling, " Erudio Security, LLC, Tech. Rep., 2006.
32. Birnbaum ZW. On The Importance of Different Components in a Multicomponent System. In Multivariate Analysis - II, Krishnaiah PR, (ed). Academic Press: New York, NY, USA, 1969; 581-592
33. Higuero MV, Unzilla JJ, Jacob E, Saiz P, Aguado M, Luengo D. Application of 'attack trees' in security analysis of digital contents e-commerce protocols with copyright protection. In Proceedings of CCST, 2005; 57-60.
34. Lathrop S, Hill J, Surdu J. Modeling network attacks. In Proceedings of 12th Conference on Behavior Representation in Modeling and Simulation, 2003; 401-407.
35. I. Software, "Attacktree+, " 2007.
36. Tidwell T, Larson R, Fitch K, Hale J. Modeling internet attacks. In Proceedings of the 2001 IEEE Workshop on Information Assurance and security, vol. 59. IEEE, 2001.