A framework to evaluate cyber agility

Marvel, Lisa M.; Brown, Scott; Neamtiu, Iulian; Harang, Richard; Harman, David; Henz, Brian J.

doi:10.1109/milcom.2015.7357414

Cited by 8 publications

(8 citation statements)

References 2 publications

(2 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…, T . triangle area as security gain in [2,3] triangle area as security loss in [5,6] 3) Aggregated-Generational-Impact (AGI): This metric aims to measure the overall security gained by the defender over time horizon [0, T ]. We propose measuring the security gain over time interval [t i−1 , t i ], denoted by G s (i), for i = 1, .…”

Section: ) Evolutionary Effectiveness (Ee)mentioning

confidence: 99%

“…In the cybersecurity domain, agility often refers to reasoned changes to a system or environment in response to functional or security needs, but has not been paid due attention until very recently [15], [1], [2], [3], [4], [5]. While it would be intuitive to understand agility as how fast (e.g., response ability [23]) and how effective a system can adapt its configuration to unexpected attacks against it (e.g., considering the cost incurred by the degraded system performance or the cost incurred by response actions [1], [24]), the concept of agility is, like other metrics, elusive to formalize.…”

Section: Background and Related Work A Concept Of Agility And Agility...mentioning

confidence: 99%

“…While it would be intuitive to understand agility as how fast (e.g., response ability [23]) and how effective a system can adapt its configuration to unexpected attacks against it (e.g., considering the cost incurred by the degraded system performance or the cost incurred by response actions [1], [24]), the concept of agility is, like other metrics, elusive to formalize. Indeed, there is no rigorous or quantitative definition of agility in the cybersecurity domain and existing attempts to model agility have not been able to produce concrete measurements [2], [25], [26]. Despite the apparent importance, systematic and quantitative agility metrics have not been studied and understood in-depth.…”

Section: Background and Related Work A Concept Of Agility And Agility...mentioning

confidence: 99%

“…We call this problem measuring cyber agility. Cyber agility and its quantification have recently been recognized as critical cybersecurity issues that are little understood [1], [2], [3], [4], [5].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Metrics Towards Measuring Cyber Agility

Mireles

Ficke

Cho

et al. 2019

IEEE Trans.Inform.Forensic Secur.

View full text Add to dashboard Cite

In cyberspace, evolutionary strategies are commonly used by both attackers and defenders. For example, an attacker's strategy often changes over the course of time, as new vulnerabilities are discovered and/or mitigated. Similarly, a defender's strategy changes over time. These changes may or may not be in direct response to a change in the opponent's strategy. In any case, it is important to have a set of quantitative metrics to characterize and understand the effectiveness of attackers' and defenders' evolutionary strategies, which reflect their cyber agility. Despite its clear importance, few systematic metrics have been developed to quantify the cyber agility of attackers and defenders. In this paper, we propose the first metric framework for measuring cyber agility in terms of the effectiveness of the dynamic evolution of cyber attacks and defenses. The proposed framework is generic and applicable to transform any relevant, quantitative, and/or conventional static security metrics (e.g., false positives and false negatives) into dynamic metrics to capture dynamics of system behaviors. In order to validate the usefulness of the proposed framework, we conduct case studies on measuring the evolution of cyber attacks and defenses using two real-world datasets. We discuss the limitations of the current work and identify future research directions.

show abstract

Section: ) Evolutionary Effectiveness (Ee)mentioning

confidence: 99%

Section: Background and Related Work A Concept Of Agility And Agility...mentioning

confidence: 99%

Section: Background and Related Work A Concept Of Agility And Agility...mentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Metrics Towards Measuring Cyber Agility

Mireles

Ficke

Cho

et al. 2019

IEEE Trans.Inform.Forensic Secur.

View full text Add to dashboard Cite

show abstract

“…Marvel et al propose a framework to evaluate cyber agility, but they focus on scenarios in which either a specific vulnerability or infected node is known to exist, and attempt to optimize the patching and isolation process in the network to preserve network integrity under various constraints including connectivity and power usage [8]. Huber et al examine a similar problem using a decision support system in a small network of 10 active nodes [5].…”

Section: Related Workmentioning

confidence: 99%

Identifying Key Cyber-Physical Terrain

Thompson

Harang

2017

Proceedings of the 3rd ACM on International Workshop on Security and Privacy Analytics

Self Cite

View full text Add to dashboard Cite

The high mobility of Army tactical networks, combined with their close proximity to hostile actors, elevates the risks associated with short-range network attacks. The connectivity model for such short range connections under active operations is extremely fluid, and highly dependent upon the physical space within which the element is operating, as well as the patterns of movement within that space. To handle these dependencies, we introduce the notion of "key cyber-physical terrain": locations within an area of operations that allow for effective control over the spread of proximity-dependent malware in a mobile tactical network, even as the elements of that network are in constant motion with an unpredictable pattern of node-to-node connectivity. We provide an analysis of movement models and approximation strategies for finding such critical nodes, and demonstrate via simulation that we can identify such key cyber-physical terrain quickly and effectively. arXiv:1701.07331v1 [cs.CR]

show abstract

Information security and privacy in hospitals: a literature mapping and review of research gaps

Ahouanmenou

Looy

Poels

2022

Informatics for Health and Social Care

View full text Add to dashboard Cite

and is head of the research cluster "Process orientation" at the UGentMIS Management Information Systems research group. Her research interests include business process management and digital innovation. Amy is the recipient of the "Highest Award for Achievement" at the Dale Carnegie Consulting Program in 2007, the "Award for Best Contribution" at the OnTheMove Academy in 2010, and other paper rewards. She was nominated in the top-10 for "Young ICT Lady of the year 2014" by DataNews and was recognized as a tech role model by "InspiringFifty Belgium" in 2020.

show abstract

A framework to evaluate cyber agility

Cited by 8 publications

References 2 publications

Metrics Towards Measuring Cyber Agility

Metrics Towards Measuring Cyber Agility

Identifying Key Cyber-Physical Terrain

Information security and privacy in hospitals: a literature mapping and review of research gaps

Contact Info

Product

Resources

About