Simulating Cyberattacks through a Breach Attack Simulation (BAS) Platform empowered by Security Chaos Engineering (SCE)

TL;DR

This paper introduces a novel integration of Security Chaos Engineering with Breach Attack Simulation platforms, enhancing cyberattack simulation capabilities by leveraging threat intelligence and structured architecture.

Contribution

It presents a new architecture combining SCE and BAS, utilizing threat profiles and MITRE Caldera for automated, realistic attack simulations.

Findings

Enhanced attack simulation effectiveness demonstrated

Integration of SCE with BAS provides more realistic scenarios

Potential to improve cyber defense strategies

Abstract

In today digital landscape, organizations face constantly evolving cyber threats, making it essential to discover slippery attack vectors through novel techniques like Security Chaos Engineering (SCE), which allows teams to test defenses and identify vulnerabilities effectively. This paper proposes to integrate SCE into Breach Attack Simulation (BAS) platforms, leveraging adversary profiles and abilities from existing threat intelligence databases. This innovative proposal for cyberattack simulation employs a structured architecture composed of three layers: SCE Orchestrator, Connector, and BAS layers. Utilizing MITRE Caldera in the BAS layer, our proposal executes automated attack sequences, creating inferred attack trees from adversary profiles. Our proposal evaluation illustrates how integrating SCE with BAS can enhance the effectiveness of attack simulations beyond traditional scenarios, and be a useful component of a cyber defense strategy.