A Review on Attack Graph Analysis for IoT Vulnerability Assessment: Challenges, Open Issues, and Future Directions

Almazrouei, Omar; Magalingam, Pritheega; Hasan, Mohammad Kamrul; Shanmugam, Mohana

doi:10.1109/access.2023.3272053

Cited by 13 publications

(5 citation statements)

References 74 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Various methods are available for assessing and detecting attacks to improve the security of the IoT. Attack graphs combined with other methods, such as game theory and machine learning, help assess the vulnerability of IoT networks [103]. Recent research focuses on using deep learning methods to design malware detection systems [104].…”

Section: ) Attack Assessment and Detectionmentioning

confidence: 99%

A Survey on Key Agreement and Authentication Protocol for Internet of Things Application

Hasan,

Weichen,

Safie

et al. 2024

IEEE Access

Self Cite

View full text Add to dashboard Cite

show abstract

Section: ) Attack Assessment and Detectionmentioning

confidence: 99%

A Survey on Key Agreement and Authentication Protocol for Internet of Things Application

Hasan,

Weichen,

Safie

et al. 2024

IEEE Access

Self Cite

View full text Add to dashboard Cite

show abstract

“…GAs are metaheuristics that mimic the Darwinian evolutionary process, wherein the fittest individuals are more likely to transmit their traits to the next generation. GAs have been applied successfully to a variety of problems such as vulnerability assessment [32,33], protection coordination [34,35], expansion planning [36,37], etc. Furthermore, it has been demonstrated that GAs are effective in addressing the problem of UFLS scheme dimen-sioning, as indicated in [38][39][40].…”

Section: Genetic Algorithmmentioning

confidence: 99%

Optimal Estimation of Under-Frequency Load Shedding Scheme Parameters by Considering Virtual Inertia Injection

Bustamante-Mesa,

Gonzalez-Sanchez,

Saldarriaga-Zuluaga

et al. 2024

Energies

View full text Add to dashboard Cite

Under-frequency load shedding (UFLS) schemes are the latest safety measures applied for safeguarding the integrity of the grid against abrupt frequency imbalances. The overall inertia of electrical power systems is expected to decrease with an increased penetration of renewable energy as well as elements connected through power electronic interfaces. However, voltage source converter-based high voltage direct current (VSC-HVDC) links can provide virtual inertia through a control loop that allows for a reaction to occur at certain frequency fluctuations. This paper evaluates a UFLS scheme that considers the injection of virtual inertia through a VSC-HVDC link. A genetic algorithm (GA) is used to determine the location of the UFLS relays, the activation threshold of each stage, the delay time and the percentage of load shedding at each stage. It was found that the virtual inertia causes the nadir to delay and sometimes reach a greater depth. Furthermore, the implemented GA approximates the frequency response to the limits set with the constraints, reducing the load shedding but achieving a steeper nadir and a lower steady-state frequency level than traditional UFLS. The simulations were performed using the IEEE 39-bus test system.

show abstract

“…It reveals all potential vulnerability combinations and their relationships and lists all potential attack paths from the perspective of the attacker to reflect the security state of the network, such as the number of attack paths, the length of the shortest attack path, and the key vulnerability. Multi-step attacks can be effectively prevented based on the attack graph [11,12]. To enhance the relevance between vulnerability assessment and network systems, many studies have conducted network vulnerability analysis based on attack graphs.…”

Section: Introductionmentioning

confidence: 99%

Key Vulnerable Nodes Discovery Based on Bayesian Attack Subgraphs and Improved Fuzzy C-Means Clustering

Xu,

Liu,

Sun

et al. 2024

Mathematics

View full text Add to dashboard Cite

Aiming at the problem that the search efficiency of key vulnerable nodes in large-scale networks is not high and the consideration factors are not comprehensive enough, in order to improve the time and space efficiency of search and the accuracy of results, a key vulnerable node discovery method based on Bayesian attack subgraphs and improved fuzzy C-means clustering is proposed. Firstly, the attack graph is divided into Bayesian attack subgraphs, and the analysis results of the complete attack graph are quickly obtained by aggregating the information of the attack path analysis in the subgraph to improve the time and space efficiency. Then, the actual threat features of the vulnerability nodes are extracted from the analysis results, and the threat features of the vulnerability itself in the common vulnerability scoring standard are considered to form the clustering features together. Next, the optimal number of clusters is adaptively adjusted according to the variance idea, and fuzzy clustering is performed based on the extracted clustering features. Finally, the key vulnerable nodes are determined by setting the feature priority. Experiments show that the proposed method can optimize the time and space efficiency of analysis, and the fuzzy clustering considering multiple features can improve the accuracy of analysis results.

show abstract

A Review on Attack Graph Analysis for IoT Vulnerability Assessment: Challenges, Open Issues, and Future Directions

Cited by 13 publications

References 74 publications

A Survey on Key Agreement and Authentication Protocol for Internet of Things Application

A Survey on Key Agreement and Authentication Protocol for Internet of Things Application

Optimal Estimation of Under-Frequency Load Shedding Scheme Parameters by Considering Virtual Inertia Injection

Key Vulnerable Nodes Discovery Based on Bayesian Attack Subgraphs and Improved Fuzzy C-Means Clustering

Contact Info

Product

Resources

About