"Talking a different Language": Anticipating adversary attack cost for cyber risk assessment. Issue 103 (April 2021)
- Record Type:
- Journal Article
- Title:
- "Talking a different Language": Anticipating adversary attack cost for cyber risk assessment. Issue 103 (April 2021)
- Main Title:
- "Talking a different Language": Anticipating adversary attack cost for cyber risk assessment
- Authors:
- Derbyshire, Richard
Green, Benjamin
Hutchison, David - Abstract:
- Abstract: Typical cyber security risk assessment methods focus on the system under consideration, its vulnerabilities, and the resulting impact in the event of a system compromise. Cyber security, however, increasingly requires anticipating the moves of intelligent adversaries, who make decisions based on a range of factors including the cost of their attacks. A study of current risk assessment literature and industry practice shows that consideration of this cost is a notable gap in the understanding of adversaries. The factors of cost experienced by an adversary are established in this paper as Time, Finance, and Risk, supported by a practical study undertaken with relevant security practitioners. Using these factors as a base, a framework is proposed and developed to support the probabilistic determination of cost incurred by an adversary. This framework is an important extension to existing cyber security risk assessments, and is demonstrated in the paper through the use of a case study.
- Is Part Of:
- Computers & security. Issue 103(2021)
- Journal:
- Computers & security
- Issue:
- Issue 103(2021)
- Issue Display:
- Volume 103, Issue 103 (2021)
- Year:
- 2021
- Volume:
- 103
- Issue:
- 103
- Issue Sort Value:
- 2021-0103-0103-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-04
- Subjects:
- Cyber attack -- Adversary -- Cost -- Risk assessment -- Threat actor -- Threat assessment
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2020.102163 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 15804.xml