TL;DR
This paper presents CySecTool, a tool for cost-effective security control optimization over probabilistic attack graphs, demonstrated through a case study on an industrial control system to enhance cybersecurity planning.
Contribution
The paper introduces CySecTool, an optimization tool that efficiently models, analyzes, and visualizes security control portfolios for probabilistic attack graphs in industrial systems.
Findings
CySecTool effectively identifies optimal security controls within budget constraints.
The case study demonstrates practical application in industrial control system security.
Results assist analysts in decision-making for cybersecurity investments.
Abstract
CySecTool is a tool that finds a cost-optimal security controls portfolio in a given budget for a probabilistic attack graph. A portfolio is a set of counter-measures, or controls, against vulnerabilities adopted for a computer system, while an attack graph is a type of a threat scenario model. In an attack graph, nodes are privilege states of the attacker, edges are vulnerabilities escalating privileges, and controls reduce the probabilities of some vulnerabilities being exploited. The tool builds on an optimisation algorithm published by Khouzani et al. (2019), enabling a user to quickly create, edit, and incrementally improve models, analyse results for given portfolios and display the best solutions for all possible budgets in the form of a Pareto frontier. A case study was performed utilising a system graph and suspected attack paths prepared by industrial security engineers based…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
