Hypergraph-driven mitigation of cyberattacks

Gustavo Gonzalez-Granadillo; Elena Doynikova; Igor Kotenko; Joaquin Garcia-Alfaro

doi:10.1002/itl2.38

Hypergraph-driven mitigation of cyberattacks

Gustavo Gonzalez-Granadillo
, Elena Doynikova
, Igor Kotenko
, Joaquin Garcia-Alfaro

Research output: Contribution to journal › Letter › peer-review

Abstract

We extend a mitigation model that evaluates individual and combined countermeasures against multistep cyberattack scenarios. The goal is to anticipate the actions of an attacker that wants to disrupt a given system (eg, an information system). The process is driven by a hypergraph formalism, enforced with a stateful return on response investment metric that optimally evaluates, ranks, and selects appropriate countermeasures to handle ongoing and potential attacks.

Original language	English
Article number	e38
Journal	Internet Technology Letters
Volume	1
Issue number	3
DOIs	https://doi.org/10.1002/itl2.38
Publication status	Published - 1 May 2018
Externally published	Yes

Keywords

attack graphs
countermeasure selection
mitigation
network security
return on security investment
security metrics

Access to Document

10.1002/itl2.38

Cite this

@article{4df4f371314f46f88499a9c8efe80cec,

title = "Hypergraph-driven mitigation of cyberattacks",

abstract = "We extend a mitigation model that evaluates individual and combined countermeasures against multistep cyberattack scenarios. The goal is to anticipate the actions of an attacker that wants to disrupt a given system (eg, an information system). The process is driven by a hypergraph formalism, enforced with a stateful return on response investment metric that optimally evaluates, ranks, and selects appropriate countermeasures to handle ongoing and potential attacks.",

keywords = "attack graphs, countermeasure selection, mitigation, network security, return on security investment, security metrics",

author = "Gustavo Gonzalez-Granadillo and Elena Doynikova and Igor Kotenko and Joaquin Garcia-Alfaro",

note = "Publisher Copyright: Copyright {\textcopyright} 2018 John Wiley \& Sons, Ltd.",

year = "2018",

month = may,

day = "1",

doi = "10.1002/itl2.38",

language = "English",

volume = "1",

journal = "Internet Technology Letters",

issn = "2476-1508",

number = "3",

}

TY - JOUR

T1 - Hypergraph-driven mitigation of cyberattacks

AU - Gonzalez-Granadillo, Gustavo

AU - Doynikova, Elena

AU - Kotenko, Igor

AU - Garcia-Alfaro, Joaquin

PY - 2018/5/1

Y1 - 2018/5/1

N2 - We extend a mitigation model that evaluates individual and combined countermeasures against multistep cyberattack scenarios. The goal is to anticipate the actions of an attacker that wants to disrupt a given system (eg, an information system). The process is driven by a hypergraph formalism, enforced with a stateful return on response investment metric that optimally evaluates, ranks, and selects appropriate countermeasures to handle ongoing and potential attacks.

AB - We extend a mitigation model that evaluates individual and combined countermeasures against multistep cyberattack scenarios. The goal is to anticipate the actions of an attacker that wants to disrupt a given system (eg, an information system). The process is driven by a hypergraph formalism, enforced with a stateful return on response investment metric that optimally evaluates, ranks, and selects appropriate countermeasures to handle ongoing and potential attacks.

KW - attack graphs

KW - countermeasure selection

KW - mitigation

KW - network security

KW - return on security investment

KW - security metrics

UR - https://www.scopus.com/pages/publications/85087282922

U2 - 10.1002/itl2.38

DO - 10.1002/itl2.38

M3 - Letter

AN - SCOPUS:85087282922

SN - 2476-1508

VL - 1

JO - Internet Technology Letters

JF - Internet Technology Letters

IS - 3

M1 - e38

ER -

Hypergraph-driven mitigation of cyberattacks

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this