Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering

Wei Li; Rayford B. Vaughn

doi:10.1109/HICSS.2006.353

Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering

Wei Li
, Rayford B. Vaughn

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In this paper, we define a process to model and simulate attack scenarios in networked environments. Known system vulnerability data, system configuration data, and vulnerability scanner results are associated to create exploitation graphs (e-graphs) which are used to represent attack scenarios. Experiments carried out in a cluster computing environment showed the usefulness of proposed techniques in providing in-depth attack scenario analyses for security engineering. Critical vulnerabilities can be identified by employing graph algorithms. Several factors were used to measure the difficulty in executing an attack. A cost/benefit analysis was used for more accurate quantitative analysis of attack scenarios. We have also shown how the attack scenario analyses better help deployment of security products and design of network topologies.

Original language	English
Title of host publication	Proceedings of the 39th Annual Hawaii International Conference on System Sciences, HICSS'06
Pages	225c
DOIs	https://doi.org/10.1109/HICSS.2006.353
State	Published - 2006
Event	39th Annual Hawaii International Conference on System Sciences, HICSS'06 - Kauai, HI, United States Duration: Jan 4 2006 → Jan 7 2006

Publication series

Name	Proceedings of the Annual Hawaii International Conference on System Sciences
Volume	9
ISSN (Print)	1530-1605

Conference

Conference	39th Annual Hawaii International Conference on System Sciences, HICSS'06
Country/Territory	United States
City	Kauai, HI
Period	1/4/06 → 1/7/06

ASJC Scopus Subject Areas

General Engineering

Access to Document

10.1109/HICSS.2006.353

Cite this

Li, W., & Vaughn, R. B. (2006). Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering. In Proceedings of the 39th Annual Hawaii International Conference on System Sciences, HICSS'06 (pp. 225c). Article 1579753 (Proceedings of the Annual Hawaii International Conference on System Sciences; Vol. 9). https://doi.org/10.1109/HICSS.2006.353

Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering. / Li, Wei; Vaughn, Rayford B.
Proceedings of the 39th Annual Hawaii International Conference on System Sciences, HICSS'06. 2006. p. 225c 1579753 (Proceedings of the Annual Hawaii International Conference on System Sciences; Vol. 9).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Li, W & Vaughn, RB 2006, Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering. in Proceedings of the 39th Annual Hawaii International Conference on System Sciences, HICSS'06., 1579753, Proceedings of the Annual Hawaii International Conference on System Sciences, vol. 9, pp. 225c, 39th Annual Hawaii International Conference on System Sciences, HICSS'06, Kauai, HI, United States, 1/4/06. https://doi.org/10.1109/HICSS.2006.353

@inproceedings{fdd0c4cf4e824e85bdc6eb368df0627f,

title = "Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering",

abstract = "In this paper, we define a process to model and simulate attack scenarios in networked environments. Known system vulnerability data, system configuration data, and vulnerability scanner results are associated to create exploitation graphs (e-graphs) which are used to represent attack scenarios. Experiments carried out in a cluster computing environment showed the usefulness of proposed techniques in providing in-depth attack scenario analyses for security engineering. Critical vulnerabilities can be identified by employing graph algorithms. Several factors were used to measure the difficulty in executing an attack. A cost/benefit analysis was used for more accurate quantitative analysis of attack scenarios. We have also shown how the attack scenario analyses better help deployment of security products and design of network topologies.",

author = "Wei Li and Vaughn, \{Rayford B.\}",

year = "2006",

doi = "10.1109/HICSS.2006.353",

language = "English",

isbn = "0769525075",

series = "Proceedings of the Annual Hawaii International Conference on System Sciences",

pages = "225c",

booktitle = "Proceedings of the 39th Annual Hawaii International Conference on System Sciences, HICSS'06",

note = "39th Annual Hawaii International Conference on System Sciences, HICSS'06 ; Conference date: 04-01-2006 Through 07-01-2006",

}

TY - GEN

T1 - Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering

AU - Li, Wei

AU - Vaughn, Rayford B.

PY - 2006

Y1 - 2006

N2 - In this paper, we define a process to model and simulate attack scenarios in networked environments. Known system vulnerability data, system configuration data, and vulnerability scanner results are associated to create exploitation graphs (e-graphs) which are used to represent attack scenarios. Experiments carried out in a cluster computing environment showed the usefulness of proposed techniques in providing in-depth attack scenario analyses for security engineering. Critical vulnerabilities can be identified by employing graph algorithms. Several factors were used to measure the difficulty in executing an attack. A cost/benefit analysis was used for more accurate quantitative analysis of attack scenarios. We have also shown how the attack scenario analyses better help deployment of security products and design of network topologies.

AB - In this paper, we define a process to model and simulate attack scenarios in networked environments. Known system vulnerability data, system configuration data, and vulnerability scanner results are associated to create exploitation graphs (e-graphs) which are used to represent attack scenarios. Experiments carried out in a cluster computing environment showed the usefulness of proposed techniques in providing in-depth attack scenario analyses for security engineering. Critical vulnerabilities can be identified by employing graph algorithms. Several factors were used to measure the difficulty in executing an attack. A cost/benefit analysis was used for more accurate quantitative analysis of attack scenarios. We have also shown how the attack scenario analyses better help deployment of security products and design of network topologies.

UR - https://www.scopus.com/pages/publications/33749620012

UR - https://www.scopus.com/pages/publications/33749620012#tab=citedBy

U2 - 10.1109/HICSS.2006.353

DO - 10.1109/HICSS.2006.353

M3 - Conference contribution

AN - SCOPUS:33749620012

SN - 0769525075

SN - 9780769525075

T3 - Proceedings of the Annual Hawaii International Conference on System Sciences

SP - 225c

BT - Proceedings of the 39th Annual Hawaii International Conference on System Sciences, HICSS'06

T2 - 39th Annual Hawaii International Conference on System Sciences, HICSS'06

Y2 - 4 January 2006 through 7 January 2006

ER -

Modeling and Simulating System Exploitations through Exploitation Graphs for Security Engineering

Abstract

Publication series

Conference

ASJC Scopus Subject Areas

Access to Document

Other files and links

Fingerprint

Cite this