P&lt;inline-formula&gt;&lt;tex-math&gt;$^{2}$&lt;/tex-math&gt;&lt;alternatives&gt; &lt;inline-graphic xlink:type="simple" xlink:href="holm-ieq1-2382574.gif"/&gt;&lt;/alternatives&gt;&lt;/inline-formula&gt;CySeMoL: Predictive, Probabilistic Cyber Security Modeling Language

Holm, Hannes; Shahzad, Khurram; Buschle, Markus; Ekstedt, Mathias

doi:10.1109/tdsc.2014.2382574

Cited by 65 publications

(11 citation statements)

References 51 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Previous work, including CySeMoL [30], P2CySeMoL [6], and pwnPr3d [31], also employed architectural modeling, in which attacks and defenses were coupled to objects of system architectures and were probabilistically related by Bayesian networks. Their design essentially involved creating its qualitative structure (assets, attacks, defenses, and associations) and populating the qualitative structure with quantitative data (how likely different attacks are to succeed, given the presence or absence of different defenses).…”

Section: Related Workmentioning

confidence: 99%

“…Threat modeling is used to assess the current state of a system and as a security-by-design tool for developing new systems. A recent improvement is to couple threat modeling with attack simulations [5], [6]. In such simulations, the steps taken by an attacker to compromise system assets are traced, and a time estimate is computed from the initial step to the compromise of assets of interest [2].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Method for Assigning Probability Distributions in Attack Simulation Languages

Xiong

Hacks

Lagerström

2021

CSIMQ

View full text Add to dashboard Cite

Cyber attacks on IT and OT systems can have severe consequences for individuals and organizations, from water or energy distribution systems to online banking services. To respond to these threats, attack simulations can be used to assess the cyber security of systems to foster a higher degree of resilience against cyber attacks; the steps taken by an attacker to compromise sensitive system assets can be traced, and a time estimate can be computed from the initial step to the compromise of assets of interest. Previously, the Meta Attack Language (MAL) was introduced as a framework to develop security-oriented domain-specific languages. It allows attack simulations on modeled systems and analyzes weaknesses related to known attacks. To produce more realistic simulation results, probability distributions can be assigned to attack steps and defenses to describe the efforts required for attackers to exploit certain attack steps. However, research on assessing such probability distributions is scarce, and we often rely on security experts to model attackers' efforts. To address this gap, we propose a method to assign probability distributions to the attack steps and defenses of MAL-based languages. We demonstrate the proposed method by assigning probability distributions to a MAL-based language. Finally, the resulting language is evaluated by modeling and simulating a known cyber attack.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Method for Assigning Probability Distributions in Attack Simulation Languages

Xiong

Hacks

Lagerström

2021

CSIMQ

View full text Add to dashboard Cite

show abstract

“…Hitherto, we have united the approaches of attack graphs and system modeling in our previous works like P2CySeMoL (Holm et al 2015) and securiCAD (Ekstedt et al 2015). Our central idea was to automatically generate probabilistic attack graphs based on a existing system specification.…”

Section: State Of the Artmentioning

confidence: 99%

“…Last, the collected information needs to be processed to detect all weaknesses that can be exploited. To address this, the use of attack simulations based on system architecture models have been proposed (e.g., Ekstedt et al 2015;Holm et al 2015). These approaches take a model of the system and simulate cyber-attacks to identify weaknesses.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

powerLang: a probabilistic attack simulation language for the power domain

et al. 2020

Self Cite

View full text Add to dashboard Cite

Cyber-attacks these threats, the cyber security assessment of IT and OT infrastructures can foster a higher degree of safety and resilience against cyber-attacks. Therefore, the use of attack simulations based on system architecture models is proposed. To reduce the effort of creating new attack graphs for each system under assessment, domain-specific languages (DSLs) can be employed. DSLs codify the common attack logics of the considered domain.Previously, MAL (the Meta Attack Language) was proposed, which serves as a framework to develop DSLs and generate attack graphs for modeled infrastructures. In this article, powerLang as a MAL-based DSL for modeling IT and OT infrastructures in the power domain is proposed. Further, it allows analyzing weaknesses related to known attacks. To comprise powerLang, two existing MAL-based DSL are combined with a new language focusing on industrial control systems (ICS). Finally, this first version of the language was validated against a known cyber-attack.

show abstract

Attack Simulation for a Realistic Evaluation and Comparison of Network Security Techniques

Bajic

Becker

2018

Secure IT Systems

View full text Add to dashboard Cite

P<inline-formula><tex-math>$^{2}$</tex-math><alternatives> <inline-graphic xlink:type="simple" xlink:href="holm-ieq1-2382574.gif"/></alternatives></inline-formula>CySeMoL: Predictive, Probabilistic Cyber Security Modeling Language

Cited by 65 publications

References 51 publications

A Method for Assigning Probability Distributions in Attack Simulation Languages

A Method for Assigning Probability Distributions in Attack Simulation Languages

powerLang: a probabilistic attack simulation language for the power domain

Attack Simulation for a Realistic Evaluation and Comparison of Network Security Techniques

Contact Info

Product

Resources

About