Visible to the public CVSS-Based Probabilistic Risk Assessment for Cyber Situational Awareness and Countermeasure Selection

TitleCVSS-Based Probabilistic Risk Assessment for Cyber Situational Awareness and Countermeasure Selection
Publication TypeConference Paper
Year of Publication2017
AuthorsDoynikova, E., Kotenko, I.
Conference Name2017 25th Euromicro International Conference on Parallel, Distributed and Network-Based Processing (PDP)
KeywordsAttack Graphs, Attack Modeling, attacker characteristics, authentication, Common Vulnerability Scoring System, composability, computer network risk assessment, computer network security, countermeasure selection, CVSS, CVSS-based probabilistic risk assessment, cyber situational awareness, integrated security metrics, Measurement, Metrics, network characteristics, Prototypes, pubcrawl, reliability, resilience, Resiliency, risk assessment, risk management, security events, security information and event management system, security metrics, SIEM, SIEM systems, Silicon
Abstract

The paper suggests several techniques for computer network risk assessment based on Common Vulnerability Scoring System (CVSS) and attack modeling. Techniques use a set of integrated security metrics and consider input data from security information and event management (SIEM) systems. Risk assessment techniques differ according to the used input data. They allow to get risk assessment considering requirements to the accuracy and efficiency. Input data includes network characteristics, attacks, attacker characteristics, security events and countermeasures. The tool that implements these techniques is presented. Experiments demonstrate operation of the techniques for different security situations.

URLhttps://ieeexplore.ieee.org/document/7912670/
DOI10.1109/PDP.2017.44
Citation Keydoynikova_cvss-based_2017