Decision Support for Mission-Centric Cyber Defence

Warning

This publication doesn't include Faculty of Arts. It includes Institute of Computer Science. Official publication website can be found on muni.cz.
Authors

JAVORNÍK Michal KOMÁRKOVÁ Jana HUSÁK Martin

Year of publication 2019
Type Article in Proceedings
Conference Proceedings of the 14th International Conference on Availability, Reliability and Security (ARES 2019)
MU Faculty or unit

Institute of Computer Science

Citation
web https://dl.acm.org/doi/10.1145/3339252.3340522
Doi http://dx.doi.org/10.1145/3339252.3340522
Keywords Attack graph;Bayesian network;Cyber situational awareness;Decision support;Mission resilience
Attached files
Description In this paper, we propose a novel approach to enterprise mission modeling and mission-centric decision support for cybersecurity operations. The goal of the decision support analytical process is to suggest an effective response for an ongoing attack endangering established mission security requirements. First, we propose an enterprise mission decomposition model to represent the requirements of the missions' processes and components on their confidentiality, integrity, availability. The model is illustrated in a real-world scenario of a medical information system. Second, we propose an analytical process that calculates mission resilience metrics using the attack graphs and Bayesian network reasoning. The process is designed to help cybersecurity operations teams in understanding the complexity of a situation and decision making concerning requirements on enterprise missions.
Related projects:

You are running an old browser version. We recommend updating your browser to its latest version.