@inproceedings{22982b6f246a4ac08b9ff6081be3fd8b,
title = "Analysis of Stepping Stone Attacks in Dynamic Vulnerability Graphs",
abstract = "Vulnerability graphs have been employed as an effective tool for analyzing exploitability and impact of chain of exploits in networked environments. The attack graphs are created by a chain of {"}stepping stones{"} from the attacker origin to the desired target. The stepping stones not only provide the intermediate steps to reach the target, but also make it difficulty to identify the attacker's true location. In this paper, we model and analyze stepping stones in dynamic vulnerability graphs. Most analysis based on attack graph assume that the graph edges and weights remain constant during the attacker's attempt to propagate through the network. We propose a biased min- consensus technique for dynamic graphs with switching topology as a distributed technique to determine the attach paths with more probable stepping-stones in dynamic vulnerability graphs. We use min-plus algebra to determine necessary and sufficient convergence conditions. A necessary condition for convergence to the shortest path in the switching topology case is provided.",
author = "Marco Gamarra and Sachin Shetty and Nicol, {David M.} and Oscar Gonazlez and Kamhoua, {Charles A.} and Laurent Njilla",
note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 2018 IEEE International Conference on Communications, ICC 2018 ; Conference date: 20-05-2018 Through 24-05-2018",
year = "2018",
month = jul,
day = "27",
doi = "10.1109/ICC.2018.8422723",
language = "English (US)",
isbn = "9781538631805",
series = "IEEE International Conference on Communications",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
booktitle = "2018 IEEE International Conference on Communications, ICC 2018 - Proceedings",
address = "United States",
}