A Survey of MulVAL Extensions and Their Attack Scenarios Coverage

Tayouri, David; Baum, Nick; Shabtai, Asaf; Puzis, Rami

doi:10.1109/access.2023.3257721

Cited by 7 publications

(1 citation statement)

References 77 publications

(79 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For security risk assessment, AGs can be generated using various attack graph generation tools [28] such as MulVAL [29] and CyGraph [30]. We consider a BAG for security risk assessment.…”

Section: A Risk Assessment Using Bagmentioning

confidence: 99%

Time-Based Moving Target Defense Using Bayesian Attack Graph Analysis

et al. 2023

View full text Add to dashboard Cite

The moving target defense (MTD) is a proactive cybersecurity defense technique that constantly changes potentially vulnerable points to be attacked, to confuse the attackers, making it difficult for attackers to infer the system configuration and nullify reconnaissance activities to a victim system. We consider an MTD strategy for software-defined networking (SDN) environment where every SDN switch is controlled by a central SDN controller. As the MTD may incur excessive usage of the network/system resources for cybersecurity purposes, we propose to perform the MTD operations adaptively according to the security risk assessment based on a Bayesian attack graph (BAG) analysis. For accurate BAG analysis, we model random and weakest-first attack behaviors and incorporate the derived analytical models into the BAG analysis. Using the BAG analysis result, we formulate a knapsack problem to determine the optimal set of vulnerabilities to be reconfigured under a constraint of SDN reconfiguration overhead. The experiment results prove that the proposed MTD strategy outperforms the full MTD and random MTD counterparts in terms of the maximum/average of attack success probabilities and the number of SDN reconfiguration updates.INDEX TERMS Moving target defense, Bayesian attack graph, software-defined networking.

show abstract

“…For security risk assessment, AGs can be generated using various attack graph generation tools [28] such as MulVAL [29] and CyGraph [30]. We consider a BAG for security risk assessment.…”

Section: A Risk Assessment Using Bagmentioning

confidence: 99%