Decision Support for Mission-Centric Cyber Defence
Authors | |
---|---|
Year of publication | 2019 |
Type | Article in Proceedings |
Conference | Proceedings of the 14th International Conference on Availability, Reliability and Security (ARES 2019) |
MU Faculty or unit | |
Citation | |
web | https://dl.acm.org/doi/10.1145/3339252.3340522 |
Doi | http://dx.doi.org/10.1145/3339252.3340522 |
Keywords | Attack graph;Bayesian network;Cyber situational awareness;Decision support;Mission resilience |
Attached files | |
Description | In this paper, we propose a novel approach to enterprise mission modeling and mission-centric decision support for cybersecurity operations. The goal of the decision support analytical process is to suggest an effective response for an ongoing attack endangering established mission security requirements. First, we propose an enterprise mission decomposition model to represent the requirements of the missions' processes and components on their confidentiality, integrity, availability. The model is illustrated in a real-world scenario of a medical information system. Second, we propose an analytical process that calculates mission resilience metrics using the attack graphs and Bayesian network reasoning. The process is designed to help cybersecurity operations teams in understanding the complexity of a situation and decision making concerning requirements on enterprise missions. |
Related projects: |