Implementing the ADVISE security modeling formalism in M&amp;#x00F6;bius

Ford, Michael; Keefe, Ken; LeMay, Elizabeth; Sanders, William H.; Muehrcke, Carol

doi:10.1109/dsn.2013.6575362

Cited by 28 publications

(15 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The calculated metrics are time to compromise, the probability of taking a certain path, and the probability of being in a certain attack step. Ford et al [260] present a tool that implements this approach (called ADVISE) in the Möbius Eclipse tool.…”

Section: Attack Modellingmentioning

confidence: 99%

Security in Embedded Systems: A Model-Based Approach with Risk Metrics

Vasilevskaya¹

2015

View full text Add to dashboard Cite

Section: Attack Modellingmentioning

confidence: 99%

Security in Embedded Systems: A Model-Based Approach with Risk Metrics

Vasilevskaya¹

2015

View full text Add to dashboard Cite

“…In [6] we extended the PIA method by adding an Adversary model and building on the recent work by others in this direction, e.g. the ADVISE formalism [4]. The focus of this paper is to study the impact on network service of different attack strategies -where such strategies might be employed by naïve or more sophisticated attackers -and to highlight the effectiveness of some precautionary measures that a network operator could undertake.…”

Section: Problem Statementmentioning

confidence: 99%

Model-Based Evaluation of the Resilience of Critical Infrastructures Under Cyber Attacks

Netkachov

Popov

Salako

2016

Critical Information Infrastructures Security

View full text Add to dashboard Cite

Abstract. In this paper we report recent results on modelling the impact of cyber-attacks on the resilience of complex industrial systems. We use a hybrid model of the system under study in which the accidental failures and the malicious behaviour of the Adversary are modelled stochastically, while the consequences of failures and attacks are modelled in detail using deterministic models. This modelling approach is demonstrated on a complex case study -a reference power transmission network (NORDIC 32), enhanced with a detailed model of the computer and communication network used for monitoring, protection and control compliant with the international standard IEC 61850. We studied the resilience of the modelled system under different scenarios: i) a base-line scenario in which the modelled system operates in the presence of accidental failures without cyber-attacks; ii) several different scenarios of cyberattacks. We discuss the usefulness of the modelling approach, of the findings, and outline directions for further work.

show abstract

“…We propose to extend the PIA method by adding an Adversary model and building on the recent work by others in this direction, e.g. the ADVISE formalism [4].…”

Section: Problem Statementmentioning

confidence: 99%

Quantification of the Impact of Cyber Attack in Critical Infrastructures

Netkachov

Popov

Salako

2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

This is the accepted version of the paper.This version of the publication may differ from the final published version. Abstract. In this paper we report on a recent study of the impact of cyberattacks on the resilience of complex industrial systems. We describe our approach to building a hybrid model consisting of both the system under study and an Adversary, and we demonstrate its use on a complex case study -a reference power transmission network (NORDIC 32), enhanced with a detailed model of the computer and communication system used for monitoring, protection and control. We studied the resilience of the modelled system under different scenarios: i) a base-line scenario in which the modelled system operates in the presence of accidental failures without cyber-attacks; ii) scenarios in which cyber-attacks can occur. We discuss the usefulness of our findings and outline directions for further work. Permanent repository link

show abstract

Implementing the ADVISE security modeling formalism in Möbius

Cited by 28 publications

References 15 publications

Security in Embedded Systems: A Model-Based Approach with Risk Metrics

Security in Embedded Systems: A Model-Based Approach with Risk Metrics

Model-Based Evaluation of the Resilience of Critical Infrastructures Under Cyber Attacks

Quantification of the Impact of Cyber Attack in Critical Infrastructures

Contact Info

Product

Resources

About