A Semantic-Based Approach for Assessing the Impact of Cyber-Physical Attacks: A Healthcare Infrastructure Use Case

“…This can be particularly useful if information about a threat actor is extracted from multiple sources and then subsequently fused and represented as a single knowledge graph. 36 https://lod-cloud.net 37 Common Attack Pattern Enumeration and Classification, https://capec.mitre.org 38 Malware Attribute Enumeration and Characterization, https://maecproject.github.io 39 Common Weakness Enumeration, https://cwe.mitre.org 40 Common Vulnerabilities and Exposures, https://cve.mitre.org 41 Common Vulnerability Scoring System, https://www.first.org/cvss/ 42 Cyber Observable eXpression, https://cyboxproject.github.io 43 Common Platform Enumeration, https://nvd.nist.gov/products/cpe 44 Open Indicators of Compromise, https://github.com/mandiant/OpenIOC_1.1 45…”

“…Based on semantic modeling and a reasoning engine asset categories, relationships and input/output incident types, the impacts of complex cyber-physical attacks against critical infrastructure can be propagated and the mitigation of potential harming effects assisted [45].…”

Cybersecurity knowledge graphs

“…This can be particularly useful if information about a threat actor is extracted from multiple sources and then subsequently fused and represented as a single knowledge graph. 36 https://lod-cloud.net 37 Common Attack Pattern Enumeration and Classification, https://capec.mitre.org 38 Malware Attribute Enumeration and Characterization, https://maecproject.github.io 39 Common Weakness Enumeration, https://cwe.mitre.org 40 Common Vulnerabilities and Exposures, https://cve.mitre.org 41 Common Vulnerability Scoring System, https://www.first.org/cvss/ 42 Cyber Observable eXpression, https://cyboxproject.github.io 43 Common Platform Enumeration, https://nvd.nist.gov/products/cpe 44 Open Indicators of Compromise, https://github.com/mandiant/OpenIOC_1.1 45…”

“…Based on semantic modeling and a reasoning engine asset categories, relationships and input/output incident types, the impacts of complex cyber-physical attacks against critical infrastructure can be propagated and the mitigation of potential harming effects assisted [45].…”

Cybersecurity knowledge graphs

“…This knowledge on the transformations of incidents is security expertise exclusively held by security experts evolving in the medical field, understanding the consequences of attacks. The following paragraph explains how this knowledge has been exploited to build the rules repository (initial model is to be consulted in [15]).…”

Semantic-Based Approach for Cyber-Physical Cascading Effects Within Healthcare Infrastructures