| Title | Mission-Centric Automated Cyber Red Teaming |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Randhawa, Suneel, Turnbull, Benjamin, Yuen, Joseph, Dean, Jonathan |
| Conference Name | Proceedings of the 13th International Conference on Availability, Reliability and Security |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-6448-5 |
| Keywords | AI Planner, composability, Cyber Automation, Cyber Resiliency, cyber security, Human Behavior, information assurance, Metrics, Mission Assurance, policy-based governance, pubcrawl, red teaming, Resiliency, visualisation |
| Abstract | Cyberspace is ubiquitous and is becoming increasingly critical to many societal, commercial, military, and national functions as it emerges as an operational space in its own right. Within this context, decision makers must achieve mission continuity when operating in cyberspace. One aspect of any comprehensive security program is the use of penetration testing; the use of scanning, enumeration and offensive techniques not unlike those used by a potential adversary. Effective penetration testing provides security insight into the network as a system in its entirety. Often though, this systemic view is lost in reporting outcomes, instead becoming a list of vulnerable or exploitable systems that are individually evaluated for remediation priority. This paper introduces Trogdor; a mission-centric automated cyber red-teaming system. Trogdor undertakes model based Automated Cyber Red Teaming (ACRT) and critical node analysis to visually present the impact of vulnerable resources to cyber dependent missions. Specifically, this work discusses the purpose of Trogdor, outlines its architecture, design choices and the technologies it employs. This paper describes an application of Trogdor to an enterprise network scenario; specifically, how Trogdor provides an understanding of potential mission impacts arising from cyber vulnerabilities and mission or business-centric decision support in selecting possible strategies to mitigate those impacts. |
| URL | http://doi.acm.org/10.1145/3230833.3234688 |
| DOI | 10.1145/3230833.3234688 |
| Citation Key | randhawa_mission-centric_2018 |
Mission-Centric Automated Cyber Red Teaming