An Evolutionary Approach for Learning Attack Specifications in Network Graphs

V. Nunes Leal Franqueira; R H C Lopes; Pascal van Eck

An Evolutionary Approach for Learning Attack Specifications in Network Graphs

V. Nunes Leal Franqueira, R H C Lopes, Pascal van Eck

Research output: Book/Report › Report › Professional

26 Downloads (Pure)

Abstract

This paper presents an evolutionary algorithm that learns attack scenarios, called attack specifications, from a network graph. This learning process aims to find attack specifications that minimise cost and maximise the value that an attacker gets from a successful attack. The attack specifications that the algorithm learns are represented using an approach based on Hoare's CSP (Communicating Sequential Processes). This new approach is able to represent several elements found in attacks, for example synchronisation. These attack specifications can be used by network administrators to find vulnerable scenarios, composed from the basic constructs Sequence, Parallel and Choice, that lead to valuable assets in the network.

Original language	Undefined
Place of Publication	Enschede
Publisher	Centre for Telematics and Information Technology (CTIT)
Number of pages	8
Publication status	Published - Jun 2007

Publication series

Name	CTIT Technical Report Series
Publisher	Centre for Telematics and Information Technology, University of Twente
No.	SINTEF A13/TR-CTIT-07-40
ISSN (Print)	1381-3625

Keywords

EWI-10333
IR-64142
SCS-Services
METIS-241717

Access to Document

TR-CTIT-07-40
open
TR-CTIT-07-40
open

Cite this

@book{2ea3158ee26f4e3386dcccc2c393e200,

title = "An Evolutionary Approach for Learning Attack Specifications in Network Graphs",

abstract = "This paper presents an evolutionary algorithm that learns attack scenarios, called attack specifications, from a network graph. This learning process aims to find attack specifications that minimise cost and maximise the value that an attacker gets from a successful attack. The attack specifications that the algorithm learns are represented using an approach based on Hoare's CSP (Communicating Sequential Processes). This new approach is able to represent several elements found in attacks, for example synchronisation. These attack specifications can be used by network administrators to find vulnerable scenarios, composed from the basic constructs Sequence, Parallel and Choice, that lead to valuable assets in the network.",

keywords = "EWI-10333, IR-64142, SCS-Services, METIS-241717",

author = "{Nunes Leal Franqueira}, V. and Lopes, {R H C} and {van Eck}, Pascal",

note = "AI in Security and Information Assurance, Evolutionary Computing",

year = "2007",

month = jun,

language = "Undefined",

series = "CTIT Technical Report Series",

publisher = "Centre for Telematics and Information Technology (CTIT)",

number = "SINTEF A13/TR-CTIT-07-40",

address = "Netherlands",

}

TY - BOOK

T1 - An Evolutionary Approach for Learning Attack Specifications in Network Graphs

AU - Nunes Leal Franqueira, V.

AU - Lopes, R H C

AU - van Eck, Pascal

N1 - AI in Security and Information Assurance, Evolutionary Computing

PY - 2007/6

Y1 - 2007/6

N2 - This paper presents an evolutionary algorithm that learns attack scenarios, called attack specifications, from a network graph. This learning process aims to find attack specifications that minimise cost and maximise the value that an attacker gets from a successful attack. The attack specifications that the algorithm learns are represented using an approach based on Hoare's CSP (Communicating Sequential Processes). This new approach is able to represent several elements found in attacks, for example synchronisation. These attack specifications can be used by network administrators to find vulnerable scenarios, composed from the basic constructs Sequence, Parallel and Choice, that lead to valuable assets in the network.

AB - This paper presents an evolutionary algorithm that learns attack scenarios, called attack specifications, from a network graph. This learning process aims to find attack specifications that minimise cost and maximise the value that an attacker gets from a successful attack. The attack specifications that the algorithm learns are represented using an approach based on Hoare's CSP (Communicating Sequential Processes). This new approach is able to represent several elements found in attacks, for example synchronisation. These attack specifications can be used by network administrators to find vulnerable scenarios, composed from the basic constructs Sequence, Parallel and Choice, that lead to valuable assets in the network.

KW - EWI-10333

KW - IR-64142

KW - SCS-Services

KW - METIS-241717

M3 - Report

T3 - CTIT Technical Report Series

BT - An Evolutionary Approach for Learning Attack Specifications in Network Graphs

PB - Centre for Telematics and Information Technology (CTIT)

CY - Enschede

ER -