Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs

Chen Cao, Lun Pin Yuan, Anoop Singhal, Peng Liu, Xiaoyan Sun, Sencun Zhu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

Cyber-defense and cyber-resilience techniques sometimes fail in defeating cyber-attacks. One of the primary causes is the ineffectiveness of business process impact assessment in the enterprise network. In this paper, we propose a new business process impact assessment method, which measures the impact of an attack towards a business-process-support enterprise network and produces a numerical score for this impact. The key idea is that all attacks are performed by exploiting vulnerabilities in the enterprise network. So the impact scores for business processes are the function result of the severity of the vulnerabilities and the relations between vulnerabilities and business processes. This paper conducts a case study systematically and the result shows the effectiveness of our method.

Original languageEnglish (US)
Title of host publicationData and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings
EditorsStefano Paraboschi, Florian Kerschbaum
PublisherSpringer Verlag
Pages330-348
Number of pages19
ISBN (Print)9783319957289
DOIs
StatePublished - Jan 1 2018
Event32nd Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2018 - Bergamo, Italy
Duration: Jul 16 2018Jul 18 2018

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume10980 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other32nd Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2018
CountryItaly
CityBergamo
Period7/16/187/18/18

Fingerprint

Dependency Graph
Business Process
Attack
Vulnerability
Graph in graph theory
Industry
Resilience

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Cao, C., Yuan, L. P., Singhal, A., Liu, P., Sun, X., & Zhu, S. (2018). Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs. In S. Paraboschi, & F. Kerschbaum (Eds.), Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings (pp. 330-348). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10980 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-319-95729-6_21
Cao, Chen ; Yuan, Lun Pin ; Singhal, Anoop ; Liu, Peng ; Sun, Xiaoyan ; Zhu, Sencun. / Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs. Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings. editor / Stefano Paraboschi ; Florian Kerschbaum. Springer Verlag, 2018. pp. 330-348 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{bd2d865129f04431a2f4c95952008752,
title = "Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs",
abstract = "Cyber-defense and cyber-resilience techniques sometimes fail in defeating cyber-attacks. One of the primary causes is the ineffectiveness of business process impact assessment in the enterprise network. In this paper, we propose a new business process impact assessment method, which measures the impact of an attack towards a business-process-support enterprise network and produces a numerical score for this impact. The key idea is that all attacks are performed by exploiting vulnerabilities in the enterprise network. So the impact scores for business processes are the function result of the severity of the vulnerabilities and the relations between vulnerabilities and business processes. This paper conducts a case study systematically and the result shows the effectiveness of our method.",
author = "Chen Cao and Yuan, {Lun Pin} and Anoop Singhal and Peng Liu and Xiaoyan Sun and Sencun Zhu",
year = "2018",
month = "1",
day = "1",
doi = "10.1007/978-3-319-95729-6_21",
language = "English (US)",
isbn = "9783319957289",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "330--348",
editor = "Stefano Paraboschi and Florian Kerschbaum",
booktitle = "Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings",
address = "Germany",

}

Cao, C, Yuan, LP, Singhal, A, Liu, P, Sun, X & Zhu, S 2018, Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs. in S Paraboschi & F Kerschbaum (eds), Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10980 LNCS, Springer Verlag, pp. 330-348, 32nd Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2018, Bergamo, Italy, 7/16/18. https://doi.org/10.1007/978-3-319-95729-6_21

Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs. / Cao, Chen; Yuan, Lun Pin; Singhal, Anoop; Liu, Peng; Sun, Xiaoyan; Zhu, Sencun.

Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings. ed. / Stefano Paraboschi; Florian Kerschbaum. Springer Verlag, 2018. p. 330-348 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10980 LNCS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs

AU - Cao, Chen

AU - Yuan, Lun Pin

AU - Singhal, Anoop

AU - Liu, Peng

AU - Sun, Xiaoyan

AU - Zhu, Sencun

PY - 2018/1/1

Y1 - 2018/1/1

N2 - Cyber-defense and cyber-resilience techniques sometimes fail in defeating cyber-attacks. One of the primary causes is the ineffectiveness of business process impact assessment in the enterprise network. In this paper, we propose a new business process impact assessment method, which measures the impact of an attack towards a business-process-support enterprise network and produces a numerical score for this impact. The key idea is that all attacks are performed by exploiting vulnerabilities in the enterprise network. So the impact scores for business processes are the function result of the severity of the vulnerabilities and the relations between vulnerabilities and business processes. This paper conducts a case study systematically and the result shows the effectiveness of our method.

AB - Cyber-defense and cyber-resilience techniques sometimes fail in defeating cyber-attacks. One of the primary causes is the ineffectiveness of business process impact assessment in the enterprise network. In this paper, we propose a new business process impact assessment method, which measures the impact of an attack towards a business-process-support enterprise network and produces a numerical score for this impact. The key idea is that all attacks are performed by exploiting vulnerabilities in the enterprise network. So the impact scores for business processes are the function result of the severity of the vulnerabilities and the relations between vulnerabilities and business processes. This paper conducts a case study systematically and the result shows the effectiveness of our method.

UR - http://www.scopus.com/inward/record.url?scp=85050518969&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85050518969&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-95729-6_21

DO - 10.1007/978-3-319-95729-6_21

M3 - Conference contribution

AN - SCOPUS:85050518969

SN - 9783319957289

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 330

EP - 348

BT - Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings

A2 - Paraboschi, Stefano

A2 - Kerschbaum, Florian

PB - Springer Verlag

ER -

Cao C, Yuan LP, Singhal A, Liu P, Sun X, Zhu S. Assessing attack impact on business processes by interconnecting attack graphs and entity dependency graphs. In Paraboschi S, Kerschbaum F, editors, Data and Applications Security and Privacy XXXII - 32nd Annual IFIP WG 11.3 Conference, DBSec 2018, Proceedings. Springer Verlag. 2018. p. 330-348. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-319-95729-6_21