標題: A Novel Threat and Risk Assessment Mechanism for Security Controls in Service Management
作者: Wang, Ping
Chao, Kuo-Ming
Lo, Chi-Chun
資訊管理與財務金融系 註:原資管所+財金所
Department of Information Management and Finance
關鍵字: Cloud services;Threat and Risk Assessment;Attack profile;Attack-Defense Tree
公開日期: 2013
摘要: Most existing Threat and Risk Assessment (TRA) schemes for cloud services use a converse thinking approach to develop theoretical solutions for minimizing the risk of security breeches at a minimal cost. However, to support rational management decisions, TRA schemes require a careful analysis of the trade-off between the residual risk and the Return on Investment (ROI) given prescribed budget and time constraints. Accordingly, the present study proposes an improved Attack-Defense Tree mechanism designated as iADTree, for solving the TRA problem in cloud computing environments. The proposed scheme enables defenders to identify appropriate countermeasures in accordance with three different defensive strategies associated with the organization\'s security policy. In implementing the proposed scheme, a sandbox technique is used to examine the attack profile and attack probability of various forms of cyber attacks. The cost and residual risk of various defensive strategies are then evaluated and presented to the defender as a set of recommendations. Defense evaluation metrics for each node for probabilistic analysis is used to simulate the attack results. The simulations focus specifically on the attack profile of botnet to the threat risk assessment. The validity of the proposed approach is demonstrated by simulating the TRA process for a Zeus botnet attack. Overall, the results show that iADTree provides an effective means of modeling the interaction process between the attacker and the defender, analyzing the risk at each node of the tree given various defensive strategies, and developing cost-effective countermeasures for mitigating the network threat.
URI: http://dx.doi.org/10.1109/ICEBE.2013.52
http://hdl.handle.net/11536/135399
ISBN: 978-0-7695-5111-1
DOI: 10.1109/ICEBE.2013.52
期刊: 2013 IEEE 10TH INTERNATIONAL CONFERENCE ON E-BUSINESS ENGINEERING (ICEBE)
起始頁: 337
結束頁: 344
顯示於類別:會議論文