Přehled o publikaci
2020
Decision Support for Mission-Centric Network Security Management
JAVORNÍK, Michal; Jana KOMÁRKOVÁ; Lukáš SADLEK and Martin HUSÁKBasic information
Original name
Decision Support for Mission-Centric Network Security Management
Authors
JAVORNÍK, Michal; Jana KOMÁRKOVÁ; Lukáš SADLEK and Martin HUSÁK
Edition
Budapest, Hungary, NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium, p. 1-6, 6 pp. 2020
Publisher
IEEE
Other information
Language
English
Type of outcome
Proceedings paper
Confidentiality degree
is not subject to a state or trade secret
Publication form
electronic version available online
References:
Marked to be transferred to RIV
Yes
RIV identification code
RIV/00216224:14610/20:00114802
Organization
Ústav výpočetní techniky – Repository – Repository
ISBN
978-1-7281-4973-8
ISSN
UT WoS
EID Scopus
Keywords in English
Cyber situational awareness;Decision support;Attack graph;Bayesian network;Mission resilience
Links
VI20172020070, research and development project.
Changed: 31/3/2023 04:06, RNDr. Daniel Jakubík
Abstract
In the original language
In this paper, we propose a decision support process that is designed to help network and security operators in understanding the complexity of a current security situation and decision making concerning ongoing cyber-attacks and threats. The process focuses on enterprise missions and uses a graph-based mission decomposition model that captures the missions, underlying hosts and services in the network, and functional and security requirements between them. Knowing the vulnerabilities and attacker’s position in the network, the process employs logical attack graphs and Bayesian network to infer the probability of the disruption of the confidentiality, integrity, and availability of the missions. Based on the probabilities of disruptions, the process suggests the most resilient mission configuration that would withstand the current security situation.
