A distributed simulation framework for modeling cyber attacks and the evaluation of security measures

Ashtiani, Mehrdad; Azgomi, Mohammad Abdollahi

doi:10.1177/0037549714540221

Cited by 8 publications

(4 citation statements)

References 27 publications

(31 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Another prediction method was presented by Fan et al (2018), which showed an improved integrated cybersecurity prediction method based on spatial-time analysis. Also, with reference to prediction, Ashtiani and Azgomi (2014) proposed a framework for the distributed simulation of cyberattacks based on high-level architecture. Kirubavathi and Anitha (2016) recommended an approach to detect botnets, irrespective of their structures, based on network traffic flow behaviour analysis and machine-learning techniques.…”

Section: General Intrusion Detectionmentioning

confidence: 99%

Cyber risk and cybersecurity: a systematic review of data availability

Cremer

Sheehan

Fortmann

et al. 2022

Geneva Pap Risk Insur Issues Pract

118

View full text Add to dashboard Cite

Cybercrime is estimated to have cost the global economy just under USD 1 trillion in 2020, indicating an increase of more than 50% since 2018. With the average cyber insurance claim rising from USD 145,000 in 2019 to USD 359,000 in 2020, there is a growing necessity for better cyber information sources, standardised databases, mandatory reporting and public awareness. This research analyses the extant academic and industry literature on cybersecurity and cyber risk management with a particular focus on data availability. From a preliminary search resulting in 5219 cyber peer-reviewed studies, the application of the systematic methodology resulted in 79 unique datasets. We posit that the lack of available data on cyber risk poses a serious problem for stakeholders seeking to tackle this issue. In particular, we identify a lacuna in open databases that undermine collective endeavours to better manage this set of risks. The resulting data evaluation and categorisation will support cybersecurity researchers and the insurance industry in their efforts to comprehend, metricise and manage cyber risks.

show abstract

Section: General Intrusion Detectionmentioning

confidence: 99%

Cyber risk and cybersecurity: a systematic review of data availability

Cremer

Sheehan

Fortmann

et al. 2022

Geneva Pap Risk Insur Issues Pract

118

View full text Add to dashboard Cite

show abstract

“…Likelihood Est. Univ Georgia,US [45] Bayesian Networks Univ Limerick,IE [123]; George Mason Univ,US [76]; Benedict Coll,US & Univ Illinois,US [69]; Missouri Univ Sci Tech,US [81]; World Islamic Sci Edic Univ,JO & Royal Jordanian Air Forces,JO [ [118] Bounded sensor reading Nanyang Tech Univ,SG [47] Convex Optimization South China Univ Tech,CN [127] Distributed Attack Iran Sci Univ Tech,IR [54] Hierarchical Modeling MIT,US [77] LiSM: Land in Sand Miner NEC Labs Amer,US & Univ Illinois,US & BBN Tech,US [86] Montecarlo Politech Milan,IT & Univ Paris,FR [48] Penetration Testing Malek Ashtar Univ Tech,IR & NIOPDC,IR [26]; US Air Force,US [29] Process Northeastern Univ,CN [128]; Singapore Univ Tech Design,SG & Optiwater,IL & Technion Israel Inst Tech,IL [49]; Shenandoah Res Tech,US [90] Reliability Univ Idaho,US & Texas A&M Univ,US [57] Robust predictive control Northeastern Univ,CN [119] Stochastic Hypothesis Testing Univ Florida,US & Univ Sao Paulo,BR [70] Continued on next page Survey General Shanghai Univ,CN [67]; Univ Hull,UK [92]; MIT,US [82] 6 Analysis and future work…”

Section: Generalmentioning

confidence: 99%

A systematic review of cyber-resilience assessment frameworks

Estay

Sahay

Barfod

et al. 2020

Computers & Security

View full text Add to dashboard Cite

“…They also mentioned previous studies on this issue. Furthermore, [15] presented a simulation of cyberattacks with a distribution approach. Distribution enables people and programs to interact in different geographic locations.…”

Section: Related Workmentioning

confidence: 99%

Presenting a method to perform cyber maneuvers

Shakibazad¹,

Rashidi²

2018

Turk J Elec Eng & Comp Sci

View full text Add to dashboard Cite

Performing cyber maneuvers in an operational environment is not easy. We need a cyber-situational awareness framework to perform its maneuvers to protect the cyberspace and to cope with its attacks. The battlefield provided has essential information for detecting cybercrime events. The present study resolved the challenges of implementing these maneuvers through dynamic simulation of the cyber battlefield. The cyber battlefield contains detailed information on cyberspace elements, including the vulnerability knowledge repository, the tangible and intangible components of the cyberspace allowing maneuvering, penetration testing, injection attacks, tracking attacks, visualization, evaluation of the impact of cyberattacks, and risk evaluation. By injecting attacks and using the proposed algorithms, an impact assessment of each attack step on each of the elements of the environment has been done to identify potential threats.Using the proposed algorithms, an impact assessment has been performed on each of the environmental elements in order to identify potential threats. A dynamic updating simulator engine has been designed to update the vulnerability knowledge base automatically and change the topology and features of elements, accesses, services, hosts, and users.Modeling and simulation were evaluated using a qualitative research method and creating a focus group.

show abstract

A distributed simulation framework for modeling cyber attacks and the evaluation of security measures

Cited by 8 publications

References 27 publications

Cyber risk and cybersecurity: a systematic review of data availability

Cyber risk and cybersecurity: a systematic review of data availability

A systematic review of cyber-resilience assessment frameworks

Presenting a method to perform cyber maneuvers

Contact Info

Product

Resources

About