Skip to search boxSkip to navigationSkip to main content

A visualisation technique for the identification of security threats in networked systems

  • Carsten Maple
    ,
  • Valentina Viduto
Research Output: Chapter in Book/Report/Conference proceeding Conference contribution Peer-review

Abstract

This paper is primarily focused on the increased IT complexity problem and the identification of security threats in networked systems. Modern networking systems, applications and services are found to be more complex in terms of integration and distribution, therefore, harder to be managed and protected. CIOs have to put their effort on threat's identification, risk management and security evaluation processes. Objective decision making requires measuring, identifying and evaluating all enterprise events, either positive (opportunities) or negative (risks) and keeping them in perspective with the business objectives. Our approach is based on a visualisation technique that helps in decision making process, focusing on the threat identification using attack scenarios. For constructing attack scenarios we use the notion of attack graphs, as well as layered security approach. The proposed onion skin model combines attack graphs and security layers to illustrate possible threats and shortest paths to the attacker's goal. By providing few examples we justify the advantage of the threat identification technique in decision making process.

Publication Information

Output type

Research Output: Chapter in Book/Report/Conference proceeding Conference contribution Peer-review

Original language

English

Publication milestones

  • Published - 13/09/2010

Publication status

Published - 13/09/2010

Publisher

Institute of Electrical and Electronics Engineers Inc., United States
9780769541655

ISBN (Electronic)

9780769541655

External Publication IDs

  • handle.net: 10547/270638
  • Scopus: 78449280453

Host publication title

nan

Publication metrics

Metrics