Model-based security metrics using ADversary VIew Security Evaluation (ADVISE)

Elizabeth LeMay, Michael D. Ford, Ken Keefe, William H. Sanders, Carol Muehrcke

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

System architects need quantitative security metrics to make informed trade-off decisions involving system security. The security metrics need to provide insight on weak points in the system defense, considering characteristics of both the system and its adversaries. To provide such metrics, we formally define the ADversary View Security Evaluation (ADVISE) method. Our approach is to create an executable state-based security model of a system and an adversary that represents how the adversary is likely to attack the system and the results of such an attack. The attack decision function uses information about adversary attack preferences and possible attacks against the system to mimic how the adversary selects the most attractive next attack step. The adversary's decision involves looking ahead some number of attack steps. System architects can use ADVISE to compare the security strength of system architecture variants and analyze the threats posed by different adversaries. We demonstrate the feasibility and benefits of ADVISE using a case study. To produce quantitative model-based security metrics, we have implemented the ADVISE method in a tool that facilitates user input of system and adversary data and automatically generates executable models.

Original languageEnglish (US)
Title of host publicationProceedings of the 2011 8th International Conference on Quantitative Evaluation of Systems, QEST 2011
Pages191-200
Number of pages10
DOIs
StatePublished - Nov 2 2011
Event2011 8th International Conference on Quantitative Evaluation of Systems, QEST 2011 - Aachen, Germany
Duration: Sep 5 2011Sep 8 2011

Publication series

NameProceedings of the 2011 8th International Conference on Quantitative Evaluation of Systems, QEST 2011

Other

Other2011 8th International Conference on Quantitative Evaluation of Systems, QEST 2011
CountryGermany
CityAachen
Period9/5/119/8/11

Keywords

  • Adversary Attack Decisions
  • Quantitative Security Metrics
  • State-based Security Model

ASJC Scopus subject areas

  • Computer Science Applications
  • Control and Systems Engineering

Fingerprint Dive into the research topics of 'Model-based security metrics using ADversary VIew Security Evaluation (ADVISE)'. Together they form a unique fingerprint.

Cite this