English
Related papers

Related papers: Model-based Cybersecurity Analysis: Past Work and …

200 papers

This paper is devoted to measuring the security of cyber networks under advanced persistent threats (APTs). First, an APT-based cyber attack-defense process is modeled as an individual-level dynamical system. Second, the dynamic model is…

Cryptography and Security · Computer Science 2017-07-13 Lu-Xing Yang , Pengdeng Li , Xiaofan Yang , Luosheng Wen , Yingbo Wu , Yuan Yan Tang

For years, attack graphs have been an important tool for security assessment of enterprise networks, but IoT devices, a new player in the IT world, might threat the reliability of this tool. In this paper, we review the challenges that must…

Cryptography and Security · Computer Science 2019-06-27 Yael Mathov , Noga Agmon , Asaf Shabtai , Rami Puzis , Nils Ole Tippenhauer , Yuval Elovici

Security metrics serve as a powerful tool for organizations to understand the effectiveness of protecting computer networks. However majority of these measurement techniques don't adequately help corporations to make informed risk…

Cryptography and Security · Computer Science 2015-02-14 Subil Abraham , Suku Nair

One of the significant challenges that smart grid networks face is cyber-security. Several studies have been conducted to highlight those security challenges. However, the majority of these surveys classify attacks based on the security…

Cryptography and Security · Computer Science 2022-07-19 Tala Talaei Khoei , Hadjar Ould Slimane , Naima Kaabouch

The rapid expansion of cloud infrastructures and distributed identity systems has significantly increased the complexity and attack surface of modern enterprises. Traditional rule based or signature driven detection systems are often…

Cryptography and Security · Computer Science 2025-12-12 Venkata Tanuja Madireddy

Cybersecurity vulnerability information is often recorded by multiple channels, including government vulnerability repositories, individual-maintained vulnerability-gathering platforms, or vulnerability-disclosure email lists and forums.…

Artificial Intelligence · Computer Science 2022-07-05 Yue Qin , Xiaojing Liao

Cyberattacks on enterprise networks exploit complex dependencies among infrastructure, services, and applications, which challenge traditional analysis methods that focus on attack paths or network topology in isolation. In this study, we…

Cryptography and Security · Computer Science 2026-05-27 Joni Herttuainen , Vesa Kuikka , Kimmo K. Kaski

Cyberattacks are increasing, and securing against such threats is costing industries billions of dollars annually. Threat Modeling, that is, comprehending the consequences of these attacks, can provide critical support to cybersecurity…

Machine Learning · Computer Science 2025-08-19 Bipin Chhetri , Akbar Siami Namin

Numerous security metrics have been proposed in the past for protecting computer networks. However we still lack effective techniques to accurately measure the predictive security risk of an enterprise taking into account the dynamic…

Cryptography and Security · Computer Science 2015-01-09 Subil Abraham , Suku Nair

By exploiting the increasing surface attack of systems, cyber-attacks can cause catastrophic events, such as, remotely disable safety mechanisms. This means that in order to avoid hazards, safety and security need to be integrated,…

Logic in Computer Science · Computer Science 2019-01-03 Vivek Nigam , Alexander Pretschner , Harald Ruess

Facing the dynamic complex cyber environments, internal and external cyber threat intelligence, and the increasing risk of cyber-attack, knowledge graphs show great application potential in the cyber security area because of their…

Cryptography and Security · Computer Science 2022-04-12 Kai Liu , Fei Wang , Zhaoyun Ding , Sheng Liang , Zhengfei Yu , Yun Zhou

An attack taxonomy offers a consistent and structured classification scheme to systematically understand, identify, and classify cybersecurity threat attributes. However, existing taxonomies only focus on a narrow range of attacks and…

Cryptography and Security · Computer Science 2026-04-03 Md Habibor Rahman , Rocco Cassandro , Thorsten Wuest , Mohammed Shafae

Graph-based assessment formalisms have proven to be useful in the safety, dependability, and security communities to help stakeholders manage risk and maintain appropriate documentation throughout the system lifecycle. In this paper, we…

Cryptography and Security · Computer Science 2014-05-30 Nils Ole Tippenhauer , William G. Temple , An Hoa Vu , Binbin Chen , David M. Nicol , Zbigniew Kalbarczyk , William H. Sanders

Secure resource management (SRM) within a cloud computing environment is a critical yet infrequently studied research topic. This paper provides a comprehensive survey and comparative performance evaluation of potential cyber threat…

Cryptography and Security · Computer Science 2025-02-06 Deepika Saxena , Smruti Rekha Swain , Jatinder Kumar , Sakshi Patni , Kishu Gupta , Ashutosh Kumar Singh , Volker Lindenstruth

Attack Trees (ATs) are a widely used tool for security analysis. ATs can be employed in quantitative security analysis through metrics, which assign a security value to an AT. Many different AT metrics exist, and there exist multiple…

Cryptography and Security · Computer Science 2024-01-19 Milan Lopuhaä-Zwakenberg

Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is; typical metrics being…

Cryptography and Security · Computer Science 2022-12-13 Milan Lopuhaä-Zwakenberg , Carlos E. Budde , Mariëlle Stoelinga

Provenance graphs are useful and powerful tools for representing system-level activities in cybersecurity; however, existing approaches often struggle with complex queries and flexible reasoning. This paper presents a novel approach using…

Cryptography and Security · Computer Science 2025-01-27 Fang Li , Fei Zuo , Gopal Gupta

Attack graphs (AGs) are graphical tools to analyze the security of computer networks. By connecting the exploitation of individual vulnerabilities, AGs expose possible multi-step attacks against target networks, allowing system…

Cryptography and Security · Computer Science 2025-08-19 Ming Li , John Hale

Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is, such as the most likely…

Cryptography and Security · Computer Science 2022-09-29 Carlos E. Budde , Mariëlle Stoelinga

With AI-based software becoming widely available, the risk of exploiting its capabilities, such as high automation and complex pattern recognition, could significantly increase. An AI used offensively to attack non-AI assets is referred to…

Cryptography and Security · Computer Science 2025-04-08 Anket Mehra , Andreas Aßmuth , Malte Prieß