Bayesian network based weighted APT attack paths modeling in cloud computing

Zimba, Aaron; Chen, Hongsong; Wang, Zhaoshun

doi:10.1016/j.future.2019.02.045

Cited by 44 publications

(20 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…EMD and HHT signal analysis methods were used to compare and detect the LDoS attack in the two traffic trace files. The security model in WSN and edge computing are proposed and researched [15][16][17]. They can be references to the security model in this paper.…”

Section: Data Analysis Work-flow and Network Attack Scenariomentioning

confidence: 99%

Novel LDoS attack detection by Spark‐assisted correlation analysis approach in wireless sensor network

Chen

Caixia

et al. 2020

IET Information Security

Self Cite

View full text Add to dashboard Cite

Section: Data Analysis Work-flow and Network Attack Scenariomentioning

confidence: 99%

Novel LDoS attack detection by Spark‐assisted correlation analysis approach in wireless sensor network

Chen

Caixia

et al. 2020

IET Information Security

Self Cite

View full text Add to dashboard Cite

“…Thus, this method can be complementary to our method. Some other approaches for assessing cloud system reliability and security have been also explored in Yuan et al, 48 Herscheid et al, 49 Zimba et al, 50 and Wang et al 51 However, as stated in Cheng et al, 52 ''resilience to errors in the underlying hardware is a key design objective for a large class of computing systems, from embedded systems all the way to the cloud.'' To the best of our knowledge, our work is one of the few that sets up dependability models and the simulator of cloud systems, in order to understand failure behaviors originated in different levels of the CPU or bit-flips in registers.…”

Section: Related Workmentioning

confidence: 99%

Quantitative evaluation of fault propagation in a commercial cloud system

Wang

2020

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

As semiconductor technology scales into the nano regime, hardware faults have been threats against computational devices. Cloud systems are incorporating more and more computing density and energy into themselves; thus, fundamental research on topics such as dependability validation is needed, in order to verify the robustness of clouds for sensor networks. However, dependability evaluation studies have often been carried out beyond isolated physical systems, such as processors, sensors, and single boards with or without operating system hosts. These studies have been performed using inaccurate simulations instead of validating complete cloud software stacks (firmware, hypervisor, operating system hosts and workloads) as a whole. In this article, we describe the implementation of a fault injection tool, which validates the dependability of a commercial cloud software stack. Hardware faults induced by high energy density environments can be injected; the fault propagation through the cloud software stack is traced, and quantitatively evaluated. Experimental results show that the integrated fault detection mechanism of the cloud system, such as fatal trap detectors, has left a detection margin of 20% silent data corruption to narrow down. We additionally propose two detection mechanisms, which proved good performance in fault detection of cloud systems.

show abstract

“…MTA and MTD players select the optimal strategy according to the cost-benefit of attack-defense to maximize the attack-defense payoff, which has a non-cooperative relationship. In the process of defense confrontation, MTA attempts to control the attack surface of the system through various attack means, expanding the exposure scope of the attack surface, and preparing for the subsequent continuous attack [11]. On the contrary, MTD controls the attack surface of the system through dynamic, randomized and diversified methods, transferring or reducing the attack surface of the system, so as to reject the attack action of MTA.…”

Section: Fig 1 Corresponding Relationship Between Attack-defense Anmentioning

confidence: 99%

“…The defense and security committee of the White House gave the concept of moving target in the cyberspace security research progress report [11] in 2012, moving target is a technical mean that can reduce the attacker's advantage and increase the system flexibility through transformation in multiple dimensions organized in Table 2. In 2014, Department of Defense Intelligence Intelligence of U.S. defined MTD as a defense means to create, analyze, evaluate and deploy diversified and time-varying mechanisms and strategies, so as to increase the complexity and cost of attack implementation, limit and reduce the vulnerability exposure and the probability of being attacked, and improve the flexibility of the system [12].…”

Section: Mtd Defense Strategymentioning

confidence: 99%

SOCMTD: Selecting Optimal Countermeasure for Moving Target Defense Using Dynamic Game

Hu¹,

Liu²,

Jian-cheng³

et al. 2020

KSII TIIS

View full text Add to dashboard Cite

Moving target defense, as a 'game-changing' security technique for network warfare, realizes proactive defense by increasing network dynamics, uncertainty and redundancy. How to select the best countermeasure from the candidate countermeasures to maximize defense payoff becomes one of the core issues. In order to improve the dynamic analysis for existing decision-making, a novel approach of selecting the optimal countermeasure using game theory is proposed. Based on the signal game theory, a multi-stage adversary model for dynamic defense is established. Afterwards, the payoffs of candidate attack-defense strategies are quantified from the viewpoint of attack surface transfer. Then the perfect Bayesian equilibrium is calculated. The inference of attacker type is presented through signal reception and recognition. Finally the countermeasure for selecting optimal defense strategy is designed on the tradeoff between defense cost and benefit for dynamic network. A case study of attack-defense confrontation in small-scale LAN shows that the proposed approach is correct and efficient.

show abstract

Bayesian network based weighted APT attack paths modeling in cloud computing

Cited by 44 publications

References 9 publications

Novel LDoS attack detection by Spark‐assisted correlation analysis approach in wireless sensor network

Novel LDoS attack detection by Spark‐assisted correlation analysis approach in wireless sensor network

Quantitative evaluation of fault propagation in a commercial cloud system

SOCMTD: Selecting Optimal Countermeasure for Moving Target Defense Using Dynamic Game

Contact Info

Product

Resources

About