The attack navigator

Christian W. Probst, Jan Willemson, Wolter Pieters

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

403 Downloads (Pure)

Abstract

The need to assess security and take protection decisions is at least as old as our civilisation. However, the complexity and development speed of our interconnected technical systems have surpassed our capacity to imagine and evaluate risk scenarios. This holds in particular for risks that are caused by the strategic behaviour of adversaries. Therefore, technology-supported methods are needed to help us identify and manage these risks. In this paper, we describe the attack navigator: a graph-based approach to security risk assessment inspired by navigation systems. Based on maps of a socio-technical system, the attack navigator identifies routes to an attacker goal. Specific attacker properties such as skill or resources can be included through attacker profiles. This enables defenders to explore attack scenarios and the effectiveness of defense alternatives under different threat conditions.
Original languageEnglish
Title of host publicationRevised Selected Papers from the 2nd International Workshop on Graphical Models for Security (GraMSec 2015)
Number of pages17
PublisherSpringer
Publication date2016
ISBN (Print)978-3-319-29967-9
ISBN (Electronic)978-3-319-29968-6
DOIs
Publication statusPublished - 2016
EventThe Second International Workshop on Graphical Models for Security - Verona, Italy
Duration: 13 Jul 201513 Jul 2015

Conference

ConferenceThe Second International Workshop on Graphical Models for Security
Country/TerritoryItaly
CityVerona
Period13/07/201513/07/2015
SeriesLecture Notes in Computer Science
Volume9390
ISSN0302-9743

Fingerprint

Dive into the research topics of 'The attack navigator'. Together they form a unique fingerprint.

Cite this