Selecting optimal countermeasures for attacks against critical systems using the attack volume model and the RORI index. (October 2015)
- Record Type:
- Journal Article
- Title:
- Selecting optimal countermeasures for attacks against critical systems using the attack volume model and the RORI index. (October 2015)
- Main Title:
- Selecting optimal countermeasures for attacks against critical systems using the attack volume model and the RORI index
- Authors:
- Gonzalez-Granadillo, G.
Garcia-Alfaro, J.
Alvarez, E.
El-Barbori, M.
Debar, H. - Abstract:
- Abstract: The impact quantification of attacks and security countermeasures is an active research in the information and communications technology domain. Supporters of the Return On Investment (ROI), and all its variants, propose quantitative models that estimate their parameters based on expert knowledge, statistical data, simulation and risk assessment tools. Although results are used for relative comparisons, a great level of subjectivity is considered while estimating each parameter composing the model. In single attack scenarios, the use of cost sensitive metrics allows the evaluation and selection of security countermeasures. However, for attack attacks against critical infrastructures, this approach is not accurate enough to determine the impact of the equipment(s), subject(s), and/or action(s) that take part in a security incident. This paper proposes, therefore, a geometrical model that represents the volume of systems, attacks and countermeasures based on a three-dimensional coordinate system (i.e., user, channel, and resource). As a result, volumes are related to risks, making it possible to select optimal countermeasures against complex attacks based on a cost-sensitive metric. A case study on a critical infrastructure control process is provided at the end of the paper to show the applicability of our model in a scenario with two attacks.
- Is Part Of:
- Computers & electrical engineering. Volume 47(2015)
- Journal:
- Computers & electrical engineering
- Issue:
- Volume 47(2015)
- Issue Display:
- Volume 47, Issue 2015 (2015)
- Year:
- 2015
- Volume:
- 47
- Issue:
- 2015
- Issue Sort Value:
- 2015-0047-2015-0000
- Page Start:
- 13
- Page End:
- 34
- Publication Date:
- 2015-10
- Subjects:
- Attack volume -- RORI -- Countermeasure selection -- Security metrics -- Industrial critical control systems -- SCADA
Computer engineering -- Periodicals
Electrical engineering -- Periodicals
Electrical engineering -- Data processing -- Periodicals
Ordinateurs -- Conception et construction -- Périodiques
Électrotechnique -- Périodiques
Électrotechnique -- Informatique -- Périodiques
Computer engineering
Electrical engineering
Electrical engineering -- Data processing
Periodicals
Electronic journals
621.302854 - Journal URLs:
- http://www.sciencedirect.com/science/journal/00457906/ ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.compeleceng.2015.07.023 ↗
- Languages:
- English
- ISSNs:
- 0045-7906
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.680000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 1837.xml