Decision Support for Mission-Centric Network Security Management
The result's identifiers
Result code in IS VaVaI
<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14610%2F20%3A00114802" target="_blank" >RIV/00216224:14610/20:00114802 - isvavai.cz</a>
Result on the web
<a href="http://dx.doi.org/10.1109/NOMS47738.2020.9110261" target="_blank" >http://dx.doi.org/10.1109/NOMS47738.2020.9110261</a>
DOI - Digital Object Identifier
<a href="http://dx.doi.org/10.1109/NOMS47738.2020.9110261" target="_blank" >10.1109/NOMS47738.2020.9110261</a>
Alternative languages
Result language
angličtina
Original language name
Decision Support for Mission-Centric Network Security Management
Original language description
In this paper, we propose a decision support process that is designed to help network and security operators in understanding the complexity of a current security situation and decision making concerning ongoing cyber-attacks and threats. The process focuses on enterprise missions and uses a graph-based mission decomposition model that captures the missions, underlying hosts and services in the network, and functional and security requirements between them. Knowing the vulnerabilities and attacker’s position in the network, the process employs logical attack graphs and Bayesian network to infer the probability of the disruption of the confidentiality, integrity, and availability of the missions. Based on the probabilities of disruptions, the process suggests the most resilient mission configuration that would withstand the current security situation.
Czech name
—
Czech description
—
Classification
Type
D - Article in proceedings
CEP classification
—
OECD FORD branch
10200 - Computer and information sciences
Result continuities
Project
<a href="/en/project/VI20172020070" target="_blank" >VI20172020070: Research of Tools for Cyber Situational Awareness and Decision Support of CSIRT Teams in Protection of Critical Infrastructure</a><br>
Continuities
P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)
Others
Publication year
2020
Confidentiality
S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů
Data specific for result type
Article name in the collection
NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium
ISBN
9781728149738
ISSN
1542-1201
e-ISSN
—
Number of pages
6
Pages from-to
1-6
Publisher name
IEEE
Place of publication
Budapest, Hungary
Event location
Budapest
Event date
Apr 20, 2020
Type of event by nationality
WRD - Celosvětová akce
UT code for WoS article
000716920500009