Attack graphs and scenario driven wireless computer network defense

Situational Awareness in Computer Network Defense: Principles, Methods and Applications

Volumn , Issue , 2012, Pages 284-301

  Hawrylak, Peter J ^a   Louthan IV, George ^a   Daily, Jeremy ^a   Hale, John ^a   Papa, Mauricio ^a  

^a UNIVERSITY OF TULSA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84898110549     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.4018/978-1-4666-0104-8.ch016     Document Type: Chapter

References (34)

1. Alrabady, A., & Mahmud, S. (2005). Analysis of attacks against the security of keyless-entry systems for vehicles and suggestions for improved designs. IEEE Transactions on Vehicular Technology, 54(1), 41-50. doi:10.1109/TVT.2004.838829
2. Ammann, P., Wijesekera, D., & Kaushik, S. (2002). Scalable, graph-based network vulnerability analysis. In Proceedings of the 9th ACM Conference on Computer and Communications Security (pp. 217-224).
3. Artz, M. L. (2002). NetSPA: A network security planning architecture. Unpublished M.S. thesis, Massachusetts Institute of Technology, Cambridge, MA.
4. Broad, W. J., & Sanger, D. E. (November 18, 2010). Worm was perfect for sabotaging centrifuges. New York Times. Retrieved Nov. 19, 2010, from http://www.nytimes.com/2010/11/19/world/middleeast/19stuxnet.html?_r=1
5. Campbell, C., Dawkins, J., Pollet, B., Fitch, K., Hale, J., & Papa, M. (2003). On modeling computer networks for vulnerability analysis. In Gudes, E., & Shenoi, S. (Eds.), Research directions in data and applications security (pp. 233-244). Boston, MA: Kluwer Academic Publishers.
6. Chen, K., Tsai, H. C., Fabian, B., Liu, Y., & Shuler, J. (2009 July). A radiofrequency identification (RFID) temperature-monitoring system for extended maintenance of nuclear materials packaging. Proceedings of the 2009 ASME Pressure Vessels and Piping Division Conference (pp. 109-115). ASME.
7. Clark, K., Tyree, S., Dawkins, J., & Hale, J. (2004, June). Quantitative and qualitative analytical techniques for network security assessment. Proceedings of the 2004 IEEE Workshop on Information Assurance and Security (pp. 321-328). IEEE.
8. Clark, K., Tyree, S., Lee, C., & Hale, J. (2007, June). Guiding threat analysis with threat source models. Proceedings of the 2007 IEEE Workshop on Information Assurance (pp. 262-269). IEEE.
9. Francillon, A., Danev, B., & Capkun, S. (2010). Relay attacks on passive keyless entry and start systems in modern cars (Rapport technique). Cryptology ePrint Archive, Report 2010/332.
10. Hawrylak, P. J. (2006). Analysis and development of a mathematical structure to describe energy consumption of sensor networks. Unpublished doctoral dissertation, University of Pittsburgh, Pittsburgh, PA.
11. Hawrylak, P. J., Cain, J. T., & Mickle, M. H. (2007). Analytic modeling methodology for analysis of energy consumption for ISO 18000-7 RFID Networks. International Journal of Radio Frequency Identification Technology and Applications, 1(4), 371-400. doi:10.1504/IJRFITA.2007.017748
12. Hawrylak, P. J., Cain, J. T., & Mickle, M. H. (2009). Analysis methods for sensor networks. In Misra, S., Woungang, I., & Misra, S. C. (Eds.), Guide to wireless sensor networks (pp. 635-658). New York, NY: Springer. doi:10.1007/978-1-84882-218-4_25
13. Homer, J., Varikuti, A., Ou, X., & McQueen, M. A. (2008). Improving attack graph visualization through data reduction and attack grouping. Proceedings of the 5th International Workshop on Visualization for Computer Security (pp. 68-79). ACM.
14. Howard, M., & Leblanc, D. (2003). Writing secure code. Redmond, WA: Microsoft Press.
15. Howard, R. A. (1971). Dynamic probablistic systems: Vol. I. Markov models. New York, NY: John Wiley & Sons, Inc.
16. Idaho National Laboratory. (2009, October). National SCADA testbed substation automation report.
17. Ingols, K., Chu, M., Lippmann, R., Webster, S., & Boyer, S. (2009). Modeling modern network at-tacks and countermeasures using attack graphs. In 2009 Annual Computer Security Applications Conference (pp. 117-126).
18. Ingols, K., Lippmann, R., & Piwowarski, K. (2006, December). Practical attack graph generation for network defense. Proceedings of the 22nd Annual Computer Security Applications Conference (pp. 121-130). IEEE.
19. Jajodia, S., Noel, S., & OBerry, B. (2005). Topological analysis of network attack vulnerability. Managing Cyber Threats, (pp. 247-266).
20. Keating, M., & Bricaud, P. (2002). Reuse methodology manual for system-on-a-chip designs. Boston, MA: Kluwer Academic Publishers.
21. Koscher, K., Czeskis, A., Roesner, F., Patel, S., Kohno, T., & Checkoway, S., Savage, S. (2010, May). Experimental security analysis of a modern automobile. Paper presented at the 2010 IEEE Symposium on Security and Privacy, Oakland, CA.
22. Lippmann, R., Ingols, K., & Lincoln Lab, M. I. T. (2005). An annotated review of past papers on attack graphs. Massachusetts Institute of Technology, Lincoln Laboratory.
23. Newton-Evans Research Company. (2008). Substation automation report.
24. Noel, S., & Jajodia, S. (2004, October). Managing attack graph complexity through visual hierarchical aggregation. Proceedings of the 2004 ACM Workshop on Visualization and Data Mining for Computer Security (pp. 109-118). ACM.
25. Philips, C., & Swiler, L. P. (1998). A graph-based system for network-vulnerability analysis. Procedings of the 1998 Workshop on New Security Paradigms (pp. 71-79). ACM.
26. Raymond, D. R., Marchany, R. C., Brownfield, M. I., & Midkiff, S. F. (2009, January). Effects of denial-of-sleep attacks on wireless sensor network MAC protocols. IEEE Transactions on Vehicular Technology, 58(1), 367-380. doi:10.1109/TVT.2008.921621
27. Ritchey, R., & Ammann, P. (2000). Using model checking to analyze network vulnerabilities. Proceedings of the 2000 IEEE Symposium on Research on Security and Privacy (pp. 156-165). IEEE Computer Society.
28. Schneier, B. (1999, December). Attack trees: Modeling security threats. Dr. Dobb's Journal, December, 21-29.
29. Sheyner, O., Haines, J., Jha, S., Lippmann, R., & Wing, J. M. (2002). Automated generation and analysis of attack graphs. Proceedings of the 2002 IEEE Symposium on Security and Privacy (pp. 273-284). IEEE Computer Society.
30. Templeton, S., & Levitt, K. (2001). A requires/ provides model for computer attacks. In Proceedings of the 2000 Workshop on New Security Paradigms (pp. 31-38).
31. Tidwell, T., Larson, R., Fitch, K., & Hale, J. (2001). Modeling internet attacks. In Proceedings of the 2001 IEEE Workshop on Information Assurance and Security (vol. 59).
32. Tsai, H. C., Chen, K., Liu, Y., Norair, J. P., Bellamy, S., & Shuler, J. (2008). Applying RFID technology in nuclear materials management Packaging, Transport. Storage and Security of Radioactive Material, 19(1), 41-46. doi:10.1179/174651008X279000
33. Wang, L., Noel, S., & Jajodia, S. (2006). Minimum-cost network hardening using attack graphs. Computer Communications, 29(18), 3812-3824. doi:10.1016/j.comcom.2006.06.018
34. Zhang, Y., Fan, X., Xue, Z., & Xu, H. (2008, November). Two stochastic models for security evaluation based on attack graph. In The 9th International Conference for Young Computer Scientists, (pp. 2198-2203). Washington, DC: IEEE Computer Society.