Evaluating the effectiveness of security metrics for dynamic networks

Simon Enoch Yusuf; Mengmeng Ge; Jin B. Hong; Hani Alzaid; Dong Seong Kim

doi:10.1109/Trustcom/BigDataSE/ICESS.2017.248

Evaluating the effectiveness of security metrics for dynamic networks

Simon Enoch Yusuf, Mengmeng Ge, Jin B. Hong, Hani Alzaid, Dong Seong Kim

Research output: Chapter in Book/Conference paper › Conference paper

4 Citations (Scopus)

Abstract

It is difficult to assess the security of modern enterprise networks because they are usually dynamic with configuration changes (such as changes in topology, firewall rules, etc). Graphical security models (e.g., Attack Graphs and Attack Trees) and security metrics (e.g., attack cost, shortest attack path) are widely used to systematically analyse the security posture of network systems. However, there are problems using them to assess the security of dynamic networks. First, the existing graphical security models are unable to capture dynamic changes occurring in the networks over time. Second, the existing security metrics are not designed for dynamic networks such that their effectiveness to the dynamic changes in the network is still unknown. In this paper, we conduct a comprehensive analysis via simulations to evaluate the effectiveness of security metrics using a Temporal Hierarchical Attack Representation Model. Further, we investigate the varying effects of security metrics when changes are observed in the dynamic networks. Our experimental analysis shows that different security metrics have varying security posture changes with respect to changes in the network.

Original language	English
Title of host publication	Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017
Place of Publication	USA
Publisher	IEEE, Institute of Electrical and Electronics Engineers
Pages	277-284
Number of pages	8
ISBN (Electronic)	9781509049059
DOIs	https://doi.org/10.1109/Trustcom/BigDataSE/ICESS.2017.248
Publication status	Published - 7 Sep 2017
Externally published	Yes
Event	16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017 - Sydney, Australia Duration: 1 Aug 2017 → 4 Aug 2017

Conference

Conference	16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017
Country	Australia
City	Sydney
Period	1/08/17 → 4/08/17

Fingerprint

Network dynamics

Topology

Costs

Industry

Attack

Simulation analysis

Firewall

Graph

Experimental analysis

Cite this

Yusuf, S. E., Ge, M., Hong, J. B., Alzaid, H., & Kim, D. S. (2017). Evaluating the effectiveness of security metrics for dynamic networks. In Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017 (pp. 277-284). [8029451] USA: IEEE, Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/Trustcom/BigDataSE/ICESS.2017.248

Yusuf, Simon Enoch ; Ge, Mengmeng ; Hong, Jin B. ; Alzaid, Hani ; Kim, Dong Seong. / Evaluating the effectiveness of security metrics for dynamic networks. Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017. USA : IEEE, Institute of Electrical and Electronics Engineers, 2017. pp. 277-284

@inproceedings{f04d9a644bfd42509a753c579561a3e3,

title = "Evaluating the effectiveness of security metrics for dynamic networks",

abstract = "It is difficult to assess the security of modern enterprise networks because they are usually dynamic with configuration changes (such as changes in topology, firewall rules, etc). Graphical security models (e.g., Attack Graphs and Attack Trees) and security metrics (e.g., attack cost, shortest attack path) are widely used to systematically analyse the security posture of network systems. However, there are problems using them to assess the security of dynamic networks. First, the existing graphical security models are unable to capture dynamic changes occurring in the networks over time. Second, the existing security metrics are not designed for dynamic networks such that their effectiveness to the dynamic changes in the network is still unknown. In this paper, we conduct a comprehensive analysis via simulations to evaluate the effectiveness of security metrics using a Temporal Hierarchical Attack Representation Model. Further, we investigate the varying effects of security metrics when changes are observed in the dynamic networks. Our experimental analysis shows that different security metrics have varying security posture changes with respect to changes in the network.",

keywords = "Attack Graphs, Attack Trees, Cyber Security, Graphical Security Models, Security Assessment",

author = "Yusuf, {Simon Enoch} and Mengmeng Ge and Hong, {Jin B.} and Hani Alzaid and Kim, {Dong Seong}",

year = "2017",

month = "9",

day = "7",

doi = "10.1109/Trustcom/BigDataSE/ICESS.2017.248",

language = "English",

pages = "277--284",

booktitle = "Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017",

publisher = "IEEE, Institute of Electrical and Electronics Engineers",

address = "United States",

}

Yusuf, SE, Ge, M, Hong, JB, Alzaid, H & Kim, DS 2017, Evaluating the effectiveness of security metrics for dynamic networks. in Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017., 8029451, IEEE, Institute of Electrical and Electronics Engineers, USA, pp. 277-284, 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017, Sydney, Australia, 1/08/17. https://doi.org/10.1109/Trustcom/BigDataSE/ICESS.2017.248

Evaluating the effectiveness of security metrics for dynamic networks. / Yusuf, Simon Enoch; Ge, Mengmeng; Hong, Jin B.; Alzaid, Hani; Kim, Dong Seong.

Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017. USA : IEEE, Institute of Electrical and Electronics Engineers, 2017. p. 277-284 8029451.

Research output: Chapter in Book/Conference paper › Conference paper

TY - GEN

T1 - Evaluating the effectiveness of security metrics for dynamic networks

AU - Yusuf, Simon Enoch

AU - Ge, Mengmeng

AU - Hong, Jin B.

AU - Alzaid, Hani

AU - Kim, Dong Seong

PY - 2017/9/7

Y1 - 2017/9/7

N2 - It is difficult to assess the security of modern enterprise networks because they are usually dynamic with configuration changes (such as changes in topology, firewall rules, etc). Graphical security models (e.g., Attack Graphs and Attack Trees) and security metrics (e.g., attack cost, shortest attack path) are widely used to systematically analyse the security posture of network systems. However, there are problems using them to assess the security of dynamic networks. First, the existing graphical security models are unable to capture dynamic changes occurring in the networks over time. Second, the existing security metrics are not designed for dynamic networks such that their effectiveness to the dynamic changes in the network is still unknown. In this paper, we conduct a comprehensive analysis via simulations to evaluate the effectiveness of security metrics using a Temporal Hierarchical Attack Representation Model. Further, we investigate the varying effects of security metrics when changes are observed in the dynamic networks. Our experimental analysis shows that different security metrics have varying security posture changes with respect to changes in the network.

AB - It is difficult to assess the security of modern enterprise networks because they are usually dynamic with configuration changes (such as changes in topology, firewall rules, etc). Graphical security models (e.g., Attack Graphs and Attack Trees) and security metrics (e.g., attack cost, shortest attack path) are widely used to systematically analyse the security posture of network systems. However, there are problems using them to assess the security of dynamic networks. First, the existing graphical security models are unable to capture dynamic changes occurring in the networks over time. Second, the existing security metrics are not designed for dynamic networks such that their effectiveness to the dynamic changes in the network is still unknown. In this paper, we conduct a comprehensive analysis via simulations to evaluate the effectiveness of security metrics using a Temporal Hierarchical Attack Representation Model. Further, we investigate the varying effects of security metrics when changes are observed in the dynamic networks. Our experimental analysis shows that different security metrics have varying security posture changes with respect to changes in the network.

KW - Attack Graphs

KW - Attack Trees

KW - Cyber Security

KW - Graphical Security Models

KW - Security Assessment

UR - http://www.scopus.com/inward/record.url?scp=85032384769&partnerID=8YFLogxK

U2 - 10.1109/Trustcom/BigDataSE/ICESS.2017.248

DO - 10.1109/Trustcom/BigDataSE/ICESS.2017.248

M3 - Conference paper

SP - 277

EP - 284

BT - Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017

PB - IEEE, Institute of Electrical and Electronics Engineers

CY - USA

ER -

Yusuf SE, Ge M, Hong JB, Alzaid H, Kim DS. Evaluating the effectiveness of security metrics for dynamic networks. In Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, Trustcom/BigDataSE/ICESS 2017. USA: IEEE, Institute of Electrical and Electronics Engineers. 2017. p. 277-284. 8029451 https://doi.org/10.1109/Trustcom/BigDataSE/ICESS.2017.248

Access to Document

10.1109/Trustcom/BigDataSE/ICESS.2017.248

Link to publication in Scopus