@inproceedings{a0546b9ae7d64cb2878ee1c138d59e14,
title = "Attack Graph-based Solution for Vulnerabilities Impact Assessment in Dynamic Environment",
abstract = "Nowadays, networks are exposed to a set of risks and threats that can potentially cause damage and losses for companies. The security of networks must be assessed in order to measure the effectiveness of the protective measures that have been implemented. However, the impact of the dynamic behavior of these systems on the attacker's strategy is rarely considered. In this paper, we propose an attack graph-based solution that consider the evolution of system properties such as network topology changes, vulnerability discovery and patching, as well as attack detection and wiping of some system components. The topology of the attack graph evolves over time considering the evolution of the system state. Several simulations of the attacker infiltration in the system are performed by following the attack paths present in the attack graph in order to assess the security of the system. The proposed solution has been tested on a use case where a user is in remote work. By considering the changes in the network topology, new attack paths can be identified.",
keywords = "attack graph, dynamic system, network security, risk assessment, simulation",
author = "Antoine Boudermine and Rida Khatoun and Choyer, \{Jean Henri\}",
note = "Publisher Copyright: {\textcopyright} 2022 IEEE.; 5th Conference on Cloud and Internet of Things, CIoT 2022 ; Conference date: 28-03-2022 Through 30-03-2022",
year = "2022",
month = jan,
day = "1",
doi = "10.1109/CIoT53061.2022.9766588",
language = "English",
series = "5th Conference on Cloud and Internet of Things, CIoT 2022",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "24--31",
booktitle = "5th Conference on Cloud and Internet of Things, CIoT 2022",
}