Context Model Fusion for Multistage Network Attack Simulation

Analyzing and predicting complex network attack strategies require an efficient way to produce realistic and up-to-date data representing a variety of attack behaviors on diverse network configurations. This work develops a simulation system that fuses four context models: the networks, the system v...

Full description

Saved in:
Bibliographic Details
Main Authors: Moskal, Stephen, Wheeler, Ben, Kreider, Derek, Kuhl, Michael E., Yang, Shanchieh Jay
Format: Conference Proceeding
Language:English
Subjects:
Computational modeling
Computer crime
Context
Context modeling
IP networks
Servers
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Analyzing and predicting complex network attack strategies require an efficient way to produce realistic and up-to-date data representing a variety of attack behaviors on diverse network configurations. This work develops a simulation system that fuses four context models: the networks, the system vulnerabilities, the attack behaviors, and the attack scenarios, so as to synthesize multistage attack sequences. The separation of different context models enables flexibility and usability in defining these models, as well as a comprehensive synthesis of attack sequences under different combinations of situations. After describing the design of the context models, an example use of the simulator and sample outputs, including the ground truth actions and sensor observables, will be discussed.
ISSN:2155-7578
2155-7586
DOI:10.1109/MILCOM.2014.32