Visible to the public Security Risk Assessment of Server Hardware Architectures Using Graph Analysis

TitleSecurity Risk Assessment of Server Hardware Architectures Using Graph Analysis
Publication TypeConference Paper
Year of Publication2021
AuthorsKoteshwara, Sandhya
Conference Name2021 Asian Hardware Oriented Security and Trust Symposium (AsianHOST)
Date Publisheddec
KeywordsComputer architecture, Computing Theory, graph theory, Hardware, hardware security, hardware security metrics, Measurement, Metrics, pubcrawl, Runtime, security metrics, security risk assessment, Servers, statistical analysis
AbstractThe growing complexity of server architectures, which incorporate several components with state, has necessitated rigorous assessment of the security risk both during design and operation. In this paper, we propose a novel technique to model the security risk of servers by mapping their architectures to graphs. This allows us to leverage tools from computational graph theory, which we combine with probability theory for deriving quantitative metrics for risk assessment. Probability of attack is derived for server components, with prior probabilities assigned based on knowledge of existing vulnerabilities and countermeasures. The resulting analysis is further used to compute measures of impact and exploitability of attack. The proposed methods are demonstrated on two open-source server designs with different architectures.
DOI10.1109/AsianHOST53231.2021.9699554
Citation Keykoteshwara_security_2021