Scalable Attack Graph Generation
Title | Scalable Attack Graph Generation |
Publication Type | Conference Paper |
Year of Publication | 2016 |
Authors | Cook, Kyle, Shaw, Thomas, Hawrylak, Peter, Hale, John |
Conference Name | Proceedings of the 11th Annual Cyber and Information Security Research Conference |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-3752-6 |
Keywords | Attack Graphs, Attack Modeling, composability, Metrics, pubcrawl, Resiliency, vulnerability analysis |
Abstract | Attack graphs are a powerful modeling technique with which to explore the attack surface of a system. However, they can be difficult to generate due to the exponential growth of the state space, often times making exhaustive search impractical. This paper discusses an approach for generating large attack graphs with an emphasis on scalable generation over a distributed system. First, a serial algorithm is presented, highlighting bottlenecks and opportunities to exploit inherent concurrency in the generation process. Then a strategy to parallelize this process is presented. Finally, we discuss plans for future work to implement the parallel algorithm using a hybrid distributed/shared memory programming model on a heterogeneous compute node cluster. |
URL | http://doi.acm.org/10.1145/2897795.2897821 |
DOI | 10.1145/2897795.2897821 |
Citation Key | cook_scalable_2016 |