On Cyber Attacks and the Maximum-Weight Rooted-Subtree Problem

Agnarsson, Geir; Greenlaw, Raymond; Kantabutra, Sanpawat

doi:10.14232/actacyb.22.3.2016.3

Cited by 5 publications

(3 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As a result, quite a bit of work has been done where cybersecurity systems, or more generally layered computer systems, are modeled as a fixed weighted trees. For example, in [1,3,4,8,10,12] the authors consider finding weight-constrained, maximum-density subtrees and similar structures given a fixed weighting of a tree as part of the input. In these cases weights are specified on both vertices and edges.…”

Section: Introductionmentioning

confidence: 99%

“…Building on the work done in [3], in this paper we study a layered-security model and strategies for assigning penetration costs and target-acquisition values so as to minimize the amount of damage an attacker can do to a system. That is, we examine security systems.…”

Section: Introductionmentioning

confidence: 99%

“…To the best of our knowledge this approach is new in that the usual approach is to consider a particular weighted tree as input. In [3] the following question was posed: Can one mathematically prove that the intuition of storing high-value targets deeper in the system and having higher penetration costs on the outer-most layers of the system results in the best or at least good security? In this paper we answer this question and obtain more general and specific results.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

The Structure of Rooted Weighted Trees Modeling Layered Cyber-security Systems

Agnarsson¹,

Greenlaw²,

Kantabutra³

2016

Acta Cybern

Self Cite

View full text Add to dashboard Cite

In this paper we consider the structure and topology of a layered-security model in which the containers and their nestings are given in the form of a rooted tree T . A cyber-security model is an ordered three-tuple M = (T, C, P ) where C and P are multisets of penetration costs for the containers and targetacquisition values for the prizes that are located within the containers, respectively, both of the same cardinality as the set of the non-root vertices of T . The problem that we study is to assign the penetration costs to the edges and the target-acquisition values to the vertices of the tree T in such a way that minimizes the total prize that an attacker can acquire given a limited budget. The attacker breaks into containers starting at the root of T and once a vertex has been broken into, its children can be broken into by paying the associated penetration costs. The attacker must deduct the corresponding penetration cost from the budget, as each new container is broken into. For a given assignment of costs and target values we obtain a security system. We show that in general it is not possible to develop an optimal security system for a given cyber-security model M . We define P-and C-models where the penetration costs and prizes, respectively, all have unit value. We show that if T is a rooted tree such that any P-or C-model M = (T, C, P ) has an optimal security system, then T is one of the following types: (i) a rooted path, (ii) a rooted star, (iii) a rooted 3-caterpillar, or (iv) a rooted 4-spider. Conversely, if T is one of these four types of trees, then we show that any Por C-model M = (T, C, P ) does have an optimal security system. Finally, we study a duality between P-and C-models that allows us to translate results for P-models into corresponding results for C-models and vice versa. The results obtained give us some mathematical insights into how layered-security defenses should be organized.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation