• DocumentCode
    2838282
  • Title

    Threat Modeling Revisited: Improving Expressiveness of Attack

  • Author

    Mirembe, D.P. ; Muyeba, Maybin

  • Author_Institution
    Fac. of Comput. & IT, Makerere Univ. Kampala, Kampala
  • fYear
    2008
  • fDate
    8-10 Sept. 2008
  • Firstpage
    93
  • Lastpage
    98
  • Abstract
    Threat modeling plays an important role in the deployment of optimal security controls and a number of threat modeling techniques have been proposed. However, most of the existing techniques lack adequate semantics and expressiveness. This paper reviews the existing techniques and proposes threat net; a technique based on information and causality theory concepts which offers improved expressiveness and semantics of threat models. Threat net is built on Petri nets and treats every node in the threat path as a random variable, whose values include time specific attacker profile and system defense capabilities. In theory, by computing the expected value of random events one can estimate the cost of achieving a given goal. We believe that the simplicity and richness of our technique will make it attractive to security experts. In future we hope to validate threat net using case-based analysis theory.
  • Keywords
    Petri nets; security of data; Petri nets; causality theory; information theory; optimal security controls; system defense capabilities; threat modeling techniques; threat net; time specific attacker profile; Computational modeling; Computer security; Computer simulation; Costs; Information security; Intelligent systems; Optimal control; Petri nets; Random variables; Visualization; Attack-Centric; Expressiveness; Petri Nets; Semantics; Threat Net; Threat-Centric;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Modeling and Simulation, 2008. EMS '08. Second UKSIM European Symposium on
  • Conference_Location
    Liverpool
  • Print_ISBN
    978-0-7695-3325-4
  • Electronic_ISBN
    978-0-7695-3325-4
  • Type

    conf

  • DOI
    10.1109/EMS.2008.83
  • Filename
    4625253