南方科技大学知识苑(SUSTech KC): Towards enhanced threat modelling and analysis using a Markov Decision Process

题名	Towards enhanced threat modelling and analysis using a Markov Decision Process
作者	Malik，Saif U.R.1; Anjum，Adeel 2,3; Moqurrab，Syed Atif 4,5; Srivastava，Gautam 6,7
通讯作者	Srivastava，Gautam
发表日期	2022-10-01
DOI	10.1016/j.comcom.2022.07.038
发表期刊	COMPUTER COMMUNICATIONS 影响因子和分区
ISSN	0140-3664
EISSN	1873-703X
卷号	194页码:282-291
摘要	The complexity of socio-technical systems using Ambient Intelligence (AmI) and the Internet of Things (IoT) is growing exponentially, involving numerous entities, such as humans, infrastructures, and cyber systems. Achieving and maintaining a specified level of security and privacy in such systems is challenging and crucial. Attack Tree is a powerful technique used in safety and reliability engineering. In this paper, we attempted to enhance Attack Tree analysis by transforming it into a Markov Decision Process (MDP) model. We propose an algorithm to transform an Attack Tree into an MDP model. We argue that formal methods, such as probabilistic model checking can significantly improve the security analysis capabilities. Moreover, the mixture of MDP and probabilistic model checking can overcome the limitations of Attack Trees, such as state explosion, scalability, and manual interaction. We used a probabilistic model checker, namely PRISM to model an attack scenario and perform security analysis on it. To demonstrate the significance, we took a real-world use case and performed a probabilistic analysis on it. The results revealed that formal analysis can prove certain properties, which were not possible to verify using attack trees.
关键词	Attack Trees Formal methods Markov Decision Process Probabilistic model checking Security analysis
相关链接	[Scopus记录]
收录类别	EI ; SCI
语种	英语
学校署名	其他
WOS研究方向	Computer Science ; Engineering ; Telecommunications
WOS类目	Computer Science, Information Systems ; Engineering, Electrical & Electronic ; Telecommunications
WOS记录号	WOS:000877591800001
出版者	ELSEVIER
EI入藏号	20223512649765
EI主题词	Cybersecurity ; Forestry ; Formal methods ; Internet of things ; Model checking ; Security systems ; Trees (mathematics)
EI分类号	Computer Theory, Includes Formal Logic, Automata Theory, Switching Theory, Programming Theory:721.1 ; Data Communication, Equipment and Techniques:722.3 ; Computer Software, Data Handling and Applications:723 ; Computer Programming:723.1 ; Data Processing and Image Processing:723.2 ; Computer Applications:723.5 ; Agricultural Equipment and Methods; Vegetation and Pest Control:821 ; Accidents and Accident Prevention:914.1 ; Combinatorial Mathematics, Includes Graph Theory, Set Theory:921.4 ; Probability Theory:922.1
ESI学科分类	COMPUTER SCIENCE
Scopus记录号	2-s2.0-85136714963
来源库	Scopus
引用统计	被引频次[WOS]：3
成果类型	期刊论文
条目标识符	http://sustech.caswiz.com/handle/2SGJ60CL/395028
专题	南方科技大学工学院_计算机科学与工程系
作者单位	1.Information Technology Institute,Cybernetica AS Tallinn,Estonia 2.Institute of Information Technology,Quaid-i-Azam University Islamabad,Pakistan 3.Southern University of Science and Technology (SUSTECH),Shenzhen,China 4.Department of Computer Science,FCAI,Air University,Islamabad,Pakistan 5.Department of Computer Sciences,COMSATS University,Islamabad,Pakistan 6.Department of Mathematics and Computer Science,Brandon University,Brandon,R7A 6A9,Canada 7.Research Center for Interneural Computing,China Medical University,Taichung,40402,Taiwan
推荐引用方式 GB/T 7714	Malik，Saif U.R.,Anjum，Adeel,Moqurrab，Syed Atif,et al. Towards enhanced threat modelling and analysis using a Markov Decision Process[J]. COMPUTER COMMUNICATIONS,2022,194:282-291.
APA	Malik，Saif U.R.,Anjum，Adeel,Moqurrab，Syed Atif,&Srivastava，Gautam.(2022).Towards enhanced threat modelling and analysis using a Markov Decision Process.COMPUTER COMMUNICATIONS,194,282-291.
MLA	Malik，Saif U.R.,et al."Towards enhanced threat modelling and analysis using a Markov Decision Process".COMPUTER COMMUNICATIONS 194(2022):282-291.