Title :
Security Modeling with BDMP: From Theory to Implementation
Author :
Piétre-Cambacédés, Ludovic ; Deflesselle, Yann ; Bouissou, Marc
Author_Institution :
EDF R&D, Clamart, France
Abstract :
This paper discusses the implementation and use of the BDMP (Boolean logic Driven Markov Processes) formalism, recently adapted to graphical attack modeling. Theoretically, it offers an attractive trade-off between readability, scalability, modeling power and quantification capabilities. In practice, efficient model construction and analysis need complementary tools and enhancements. They have been developed only once the implementation and the first security studies have been realized. In particular, attack sequence filtering based on attacker profiles and sensitivity analysis provide a significant help. Perspectives include the addition of a security pattern library or the connection with other modeling frameworks.
Keywords :
Boolean algebra; Markov processes; formal logic; security of data; BDMP; Boolean logic driven Markov processes; attack sequence filtering; attacker profiles; graphical attack modeling; security modeling; security pattern library; sensitivity analysis; Adaptation model; Analytical models; Electronic mail; Knowledge based systems; Markov processes; Object oriented modeling; Security;
Conference_Titel :
Network and Information Systems Security (SAR-SSI), 2011 Conference on
Conference_Location :
La Rochelle
Print_ISBN :
978-1-4577-0735-3
DOI :
10.1109/SAR-SSI.2011.5931382
