| Title | Threat-driven Risk Assessment for APT Attacks using Risk-Aware Problem Domain Ontology |
| Publication Type | Conference Paper |
| Year of Publication | 2022 |
| Authors | Park, Sihn-Hye, Lee, Seok-Won |
| Conference Name | 2022 IEEE 30th International Requirements Engineering Conference Workshops (REW) |
| Keywords | advanced persistent threat, business process-based asset identification, computer security, Conferences, evidence-based risk evaluation, human factors, Information security, Metrics, Ontologies, Organizations, pubcrawl, requirements engineering, Resiliency, risk management, risk-aware problem domain ontology, Scalability, security risk management, threat-driven risk assessment |
| Abstract | Cybersecurity attacks, which have many business impacts, continuously become more intelligent and complex. These attacks take the form of a combination of various attack elements. APT attacks reflect this characteristic well. To defend against APT attacks, organizations should sufficiently understand these attacks based on the attack elements and their relations and actively defend against these attacks in multiple dimensions. Most organizations perform risk management to manage their information security. Generally, they use the information system risk assessment (ISRA). However, the method has difficulties supporting sufficiently analyzing security risks and actively responding to these attacks due to the limitations of asset-driven qualitative evaluation activities. In this paper, we propose a threat-driven risk assessment method. This method can evaluate how dangerous APT attacks are for an organization, analyze security risks from multiple perspectives, and support establishing an adaptive security strategy. |
| DOI | 10.1109/REW56159.2022.00050 |
| Citation Key | park_threat-driven_2022 |
Threat-driven Risk Assessment for APT Attacks using Risk-Aware Problem Domain Ontology