Wayne F. Boyer scite author profile

Attack graphs are important tools for analyzing security vulnerabilities in enterprise networks. Previous work on attack graphs has not provided an account of the scalability of the graph generating process, and there is often a lack of logical formalism in the representation of attack graphs, which results in the attack graph being difficult to use and understand by human beings. Pioneer work by Sheyner, et al. is the first attack-graph tool based on formal logical techniques, namely model-checking. However, when applied to moderate-sized networks, Sheyner's tool encountered a significant exponential explosion problem. This paper describes a new approach to represent and generate attack graphs. We propose logical attack graphs, which directly illustrate logical dependencies among attack goals and configuration information. A logical attack graph always has size polynomial to the network being analyzed. Our attack graph generation tool builds upon MulVAL, a network security analyzer based on logical programming. We demonstrate how to produce a derivation trace in the Mul-VAL logic-programming engine, and how to use the trace to generate a logical attack graph in quadratic time. We show experimental evidence that our logical attack graph generation algorithm is very efficient. We have generated logical attack graphs for fully connected networks of 1000 machines using a Pentium 4 CPU with 1GB of RAM.

show abstract

Quantitative Cyber Risk Reduction Estimation Methodology for a Small SCADA Control System

McQueen

Boyer

Flynn

et al. 2006

109

View full text Add to dashboard Cite

show abstract

Time-to-Compromise Model for Cyber Risk Reduction Estimation

McQueen

Boyer

Flynn

et al.

View full text Add to dashboard Cite

Abstract.We propose a new model for estimating the time to compromise a system component that is visible to an attacker. The model provides an estimate of the expected value of the time-to-compromise as a function of known and visible vulnerabilities, and attacker skill level. The time-to-compromise random process model is a composite of three subprocesses associated with attacker actions aimed at the exploitation of vulnerabilities. In a case study, the model was used to aid in a risk reduction estimate between a baseline Supervisory Control and Data Acquisition (SCADA) system and the baseline system enhanced through a specific set of control system security remedial actions. For our case study, the total number of system vulnerabilities was reduced by 86% but the dominant attack path was through a component where the number of vulnerabilities was reduced by only 42% and the time-to-compromise of that component was increased by only 13% to 30% depending on attacker skill level.

show abstract

Ideal Based Cyber Security Technical Metrics for Control Systems

Boyer

McQueen

2008

View full text Add to dashboard Cite

Abstract. Much of the world's critical infrastructure is at risk from attack through electronic networks connected to control systems. Security metrics are important because they provide the basis for management decisions that affect the protection of the infrastructure. A cyber security technical metric is the security relevant output from an explicit mathematical model that makes use of objective measurements of a technical object. A specific set of technical security metrics are proposed for use by the operators of control systems. Our proposed metrics are based on seven security ideals associated with seven corresponding abstract dimensions of security. We have defined at least one metric for each of the seven ideals. Each metric is a measure of how nearly the associated ideal has been achieved. These seven ideals provide a useful structure for further metrics development. A case study shows how the proposed metrics can be applied to an operational control system.

show abstract

Non-evolutionary algorithm for scheduling dependent tasks in distributed heterogeneous computing environments

Boyer

Hura

2005

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

Deception used for cyber defense of control systems

McQueen

Boyer

2009

View full text Add to dashboard Cite

-Control system cyber security defense mechanisms may employ deception in human system interactions to make it more difficult for attackers to plan and execute successful attacks. These deceptive defense mechanisms are organized and initially explored according to a specific deception taxonomy and the seven abstract dimensions of security previously proposed as a framework for the cyber security of control systems.

show abstract

Empirical Estimates and Observations of 0Day Vulnerabilities

McQueen

McQueen²,

Boyer³

et al. 2009

View full text Add to dashboard Cite

show abstract

Primer Control System Cyber Security Framework and Technical Metrics

Boyer¹,

McQueen²

2008

View full text Add to dashboard Cite

The Department of Homeland Security National Cyber Security Division supported development of a control system cyber security framework and a set of technical metrics to aid owner-operators in tracking control systems security. The framework defines seven relevant cyber security dimensions and provides the foundation for thinking about control system security. Based on the developed security framework, a set of ten technical metrics are recommended that allow control systems owner-operators to track improvements or degradations in their individual control systems security posture.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Wayne F. Boyer

A scalable approach to attack graph generation

Quantitative Cyber Risk Reduction Estimation Methodology for a Small SCADA Control System

Time-to-Compromise Model for Cyber Risk Reduction Estimation

Ideal Based Cyber Security Technical Metrics for Control Systems

Non-evolutionary algorithm for scheduling dependent tasks in distributed heterogeneous computing environments

Deception used for cyber defense of control systems

Empirical Estimates and Observations of 0Day Vulnerabilities

Primer Control System Cyber Security Framework and Technical Metrics

Contact Info

Product

Resources

About