CVSS-Based Probabilistic Risk Assessment for Cyber Situational Awareness and Countermeasure Selection
Title | CVSS-Based Probabilistic Risk Assessment for Cyber Situational Awareness and Countermeasure Selection |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Doynikova, E., Kotenko, I. |
Conference Name | 2017 25th Euromicro International Conference on Parallel, Distributed and Network-Based Processing (PDP) |
Keywords | Attack Graphs, Attack Modeling, attacker characteristics, authentication, Common Vulnerability Scoring System, composability, computer network risk assessment, computer network security, countermeasure selection, CVSS, CVSS-based probabilistic risk assessment, cyber situational awareness, integrated security metrics, Measurement, Metrics, network characteristics, Prototypes, pubcrawl, reliability, resilience, Resiliency, risk assessment, risk management, security events, security information and event management system, security metrics, SIEM, SIEM systems, Silicon |
Abstract | The paper suggests several techniques for computer network risk assessment based on Common Vulnerability Scoring System (CVSS) and attack modeling. Techniques use a set of integrated security metrics and consider input data from security information and event management (SIEM) systems. Risk assessment techniques differ according to the used input data. They allow to get risk assessment considering requirements to the accuracy and efficiency. Input data includes network characteristics, attacks, attacker characteristics, security events and countermeasures. The tool that implements these techniques is presented. Experiments demonstrate operation of the techniques for different security situations. |
URL | https://ieeexplore.ieee.org/document/7912670/ |
DOI | 10.1109/PDP.2017.44 |
Citation Key | doynikova_cvss-based_2017 |
- Metrics
- Silicon
- SIEM systems
- SIEM
- Security Metrics
- security information and event management system
- security events
- risk management
- risk assessment
- Resiliency
- resilience
- Reliability
- pubcrawl
- Prototypes
- network characteristics
- attack graphs
- Measurement
- integrated security metrics
- cyber situational awareness
- CVSS-based probabilistic risk assessment
- CVSS
- countermeasure selection
- computer network security
- computer network risk assessment
- composability
- Common Vulnerability Scoring System
- authentication
- attacker characteristics
- Attack Modeling