A Visualisation Technique for the Identification of Security Threats in Networked Systems

2010 14th International Conference Information Visualisation Pub Date : 2010-07-26 DOI:10.1109/IV.2010.81

C. Maple, V. Viduto

{"title":"A Visualisation Technique for the Identification of Security Threats in Networked Systems","authors":"C. Maple, V. Viduto","doi":"10.1109/IV.2010.81","DOIUrl":null,"url":null,"abstract":"This paper is primarily focused on the increased IT complexity problem and the identification of security threats in networked systems. Modern networking systems, applications and services are found to be more complex in terms of integration and distribution, therefore, harder to be managed and protected. CIOs have to put their effort on threat's identification, risk management and security evaluation processes. Objective decision making requires measuring, identifying and evaluating all enterprise events, either positive (opportunities) or negative (risks) and keeping them in perspective with the business objectives. Our approach is based on a visualisation technique that helps in decision making process, focusing on the threat identification using attack scenarios. For constructing attack scenarios we use the notion of attack graphs, as well as layered security approach. The proposed onion skin model combines attack graphs and security layers to illustrate possible threats and shortest paths to the attacker's goal. By providing few examples we justify the advantage of the threat identification technique in decision making process.","PeriodicalId":328464,"journal":{"name":"2010 14th International Conference Information Visualisation","volume":"49 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-07-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 14th International Conference Information Visualisation","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IV.2010.81","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

This paper is primarily focused on the increased IT complexity problem and the identification of security threats in networked systems. Modern networking systems, applications and services are found to be more complex in terms of integration and distribution, therefore, harder to be managed and protected. CIOs have to put their effort on threat's identification, risk management and security evaluation processes. Objective decision making requires measuring, identifying and evaluating all enterprise events, either positive (opportunities) or negative (risks) and keeping them in perspective with the business objectives. Our approach is based on a visualisation technique that helps in decision making process, focusing on the threat identification using attack scenarios. For constructing attack scenarios we use the notion of attack graphs, as well as layered security approach. The proposed onion skin model combines attack graphs and security layers to illustrate possible threats and shortest paths to the attacker's goal. By providing few examples we justify the advantage of the threat identification technique in decision making process.

查看原文本刊更多论文

一种网络系统安全威胁识别的可视化技术

本文主要关注网络系统中日益增加的IT复杂性问题和安全威胁的识别。现代网络系统、应用程序和服务在集成和分布方面变得更加复杂，因此更难管理和保护。首席信息官必须把精力放在威胁识别、风险管理和安全评估流程上。客观决策需要测量、识别和评估所有企业事件，无论是积极的(机会)还是消极的(风险)，并使它们与业务目标保持一致。我们的方法是基于可视化技术，有助于决策过程，专注于使用攻击场景识别威胁。为了构建攻击场景，我们使用了攻击图的概念，以及分层的安全方法。提出的洋葱皮模型结合了攻击图和安全层，以说明可能的威胁和到达攻击者目标的最短路径。通过实例验证了威胁识别技术在决策过程中的优势。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2010 14th International Conference Information Visualisation

自引率

0.00%

发文量