ANKH: Information Threat Analysis with Actor-NetworK Hypergraphs

Wolter Pieters

    Research output: Book/ReportReportProfessional

    25 Downloads (Pure)

    Abstract

    Traditional information security modelling approaches often focus on containment of assets within boundaries. Due to what is called de-perimeterisation, such boundaries, for example in the form of clearly separated company networks, disappear. This paper argues that in a de-perimeterised situation a focus on containment in security modelling is ineffective. Most importantly, the tree structure induced by the notion of containment is insufficient to model the interactions between digital, physical and social aspects of security. We use the sociological framework of actor-network theory to model information security starting from group membership instead of containment. The model is based on hypergraphs, and is also applicable to physical and social security measures. We provide algorithms for threat finding as well as examples.
    Original languageUndefined
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages18
    Publication statusPublished - 2010

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    No.TR-CTIT-10-16
    ISSN (Print)1381-3625

    Keywords

    • Actor-Network Theory
    • IR-71079
    • Threat Analysis
    • security modelling
    • containment
    • METIS-276025
    • EWI-17809
    • hypergraphs
    • SCS-Cybersecurity

    Cite this