Who touched my mission: Towards probabilistic mission impact assessment

Xiaoyan Sun; Anoop Singhal; Peng Liu

doi:10.1145/2809826.2809834

Who touched my mission: Towards probabilistic mission impact assessment

Xiaoyan Sun, Anoop Singhal, Peng Liu

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

7 Scopus citations

Abstract

Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact assessment. A System Object Dependency Graph (SODG) is first built to capture the intrusion propagation process at the low operating system level. On top of the SODG, a mission-task-asset (MTA) map can be established to associate the system objects with corresponding tasks and missions. Based on the MTA map, a Bayesian network can be constructed to leverage the collected intrusion evidence and infer the probabilities of tasks and missions being tainted. This approach is promising for effective quantitative mission impact assessment.

Original language	English (US)
Title of host publication	SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense
Publisher	Association for Computing Machinery, Inc
Pages	21-26
Number of pages	6
ISBN (Electronic)	9781450338219
DOIs	https://doi.org/10.1145/2809826.2809834
State	Published - Oct 12 2015
Event	Workshop on Automated Decision Making for Active Cyber Defense, SafeConfig 2015 - Denver, United States Duration: Oct 12 2015 → …

Publication series

Name	SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense

Other

Other	Workshop on Automated Decision Making for Active Cyber Defense, SafeConfig 2015
Country/Territory	United States
City	Denver
Period	10/12/15 → …

All Science Journal Classification (ASJC) codes

Computational Theory and Mathematics
Computer Science Applications
Artificial Intelligence

Access to Document

10.1145/2809826.2809834

Cite this

Sun, X., Singhal, A., & Liu, P. (2015). Who touched my mission: Towards probabilistic mission impact assessment. In SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense (pp. 21-26). (SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense). Association for Computing Machinery, Inc. https://doi.org/10.1145/2809826.2809834

Sun, Xiaoyan ; Singhal, Anoop ; Liu, Peng. / Who touched my mission : Towards probabilistic mission impact assessment. SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense. Association for Computing Machinery, Inc, 2015. pp. 21-26 (SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense).

@inproceedings{ac33f06d5bb249a4a1649b210f900d8f,

title = "Who touched my mission: Towards probabilistic mission impact assessment",

abstract = "Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact assessment. A System Object Dependency Graph (SODG) is first built to capture the intrusion propagation process at the low operating system level. On top of the SODG, a mission-task-asset (MTA) map can be established to associate the system objects with corresponding tasks and missions. Based on the MTA map, a Bayesian network can be constructed to leverage the collected intrusion evidence and infer the probabilities of tasks and missions being tainted. This approach is promising for effective quantitative mission impact assessment.",

author = "Xiaoyan Sun and Anoop Singhal and Peng Liu",

note = "Funding Information: This work was supported by NIST 70NANB14H218, ARO W911NF-09-1-0525 (MURI), NSF CNS-1422594, and ARO W911NF-13-1-0421 (MURI). Publisher Copyright: {\textcopyright} 2015 ACM.; Workshop on Automated Decision Making for Active Cyber Defense, SafeConfig 2015 ; Conference date: 12-10-2015",

year = "2015",

month = oct,

day = "12",

doi = "10.1145/2809826.2809834",

language = "English (US)",

series = "SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense",

publisher = "Association for Computing Machinery, Inc",

pages = "21--26",

booktitle = "SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense",

}

Sun, X, Singhal, A & Liu, P 2015, Who touched my mission: Towards probabilistic mission impact assessment. in SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense. SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense, Association for Computing Machinery, Inc, pp. 21-26, Workshop on Automated Decision Making for Active Cyber Defense, SafeConfig 2015, Denver, United States, 10/12/15. https://doi.org/10.1145/2809826.2809834

Who touched my mission: Towards probabilistic mission impact assessment. / Sun, Xiaoyan; Singhal, Anoop; Liu, Peng.
SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense. Association for Computing Machinery, Inc, 2015. p. 21-26 (SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Who touched my mission

T2 - Workshop on Automated Decision Making for Active Cyber Defense, SafeConfig 2015

AU - Sun, Xiaoyan

AU - Singhal, Anoop

AU - Liu, Peng

PY - 2015/10/12

Y1 - 2015/10/12

N2 - Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact assessment. A System Object Dependency Graph (SODG) is first built to capture the intrusion propagation process at the low operating system level. On top of the SODG, a mission-task-asset (MTA) map can be established to associate the system objects with corresponding tasks and missions. Based on the MTA map, a Bayesian network can be constructed to leverage the collected intrusion evidence and infer the probabilities of tasks and missions being tainted. This approach is promising for effective quantitative mission impact assessment.

AB - Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact assessment. A System Object Dependency Graph (SODG) is first built to capture the intrusion propagation process at the low operating system level. On top of the SODG, a mission-task-asset (MTA) map can be established to associate the system objects with corresponding tasks and missions. Based on the MTA map, a Bayesian network can be constructed to leverage the collected intrusion evidence and infer the probabilities of tasks and missions being tainted. This approach is promising for effective quantitative mission impact assessment.

UR - http://www.scopus.com/inward/record.url?scp=84958668231&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84958668231&partnerID=8YFLogxK

U2 - 10.1145/2809826.2809834

DO - 10.1145/2809826.2809834

M3 - Conference contribution

AN - SCOPUS:84958668231

T3 - SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense

SP - 21

EP - 26

BT - SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense

PB - Association for Computing Machinery, Inc

Y2 - 12 October 2015

ER -

Sun X, Singhal A, Liu P. Who touched my mission: Towards probabilistic mission impact assessment. In SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense. Association for Computing Machinery, Inc. 2015. p. 21-26. (SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense). doi: 10.1145/2809826.2809834

Who touched my mission: Towards probabilistic mission impact assessment

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this