@inproceedings{19bb3d6be87741468a41404fe3323c01,
title = "Optimal Deployment of Security Policies: Application to Industrial Control Systems",
abstract = "The management of security resources in a system always comes with a tradeoff. Given technical and budget constraints, the defender focuses on deploying the set of security countermeasures that offer the best level of system protection. However, optimizing the configuration and deployment of defense countermeasures for efficient attack detection and mitigation remains a challenging task. In this paper, we leverage the information present in an attack graph, representing the evolution of the state of the attacker in the system, to tackle the problem of finding the optimal security policy that offers the maximum level of system protection. Our solution can be used to assist asset owners to prioritize the deployment of security countermeasures and respond to intrusions efficiently. We validate our approach on an Advanced Metering Infrastructure (AMI) case study.",
keywords = "Security policy, intrusion response, optimization",
author = "Ziad Ismail and Jean Leneutre and Alia Fourati",
note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 14th European Dependable Computing Conference, EDCC 2018 ; Conference date: 10-09-2018 Through 14-09-2018",
year = "2018",
month = nov,
day = "9",
doi = "10.1109/EDCC.2018.00030",
language = "English",
series = "Proceedings - 2018 14th European Dependable Computing Conference, EDCC 2018",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "120--127",
booktitle = "Proceedings - 2018 14th European Dependable Computing Conference, EDCC 2018",
}