Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

A Layered Graphical Model for Cloud Forensic and Mission Impact Analysis



Changwei Liu, Anoop Singhal, Duminda Wijesekera


In this paper, we describe a layered graphical model to analyze the impact of cyber attacks on business processes and services. Our model has three layers: the upper layer models the business processes and their dependencies. The middle layer constructs attack scenarios using evidences in a log files. The lower layer reconstructs the missing attack steps using system calls. Based on the graph produced from the three layers our model computes a quantitative impact on the business processes using the NIST vulnerability scoring system. A case study shows the usability of our model and how it can be applied for both forensic analysis and for mitigating the impact of cyber attacks on the enterprise infrastructure.
Proceedings Title
Advances in Digital Forensics XIV
Conference Dates
January 3-5, 2018
Conference Location
New Delhi, IN
Conference Title
14th IFIP International Conference on Digital Forensics


Mission Impact, Forensics Analysis, Cloud Computing, Attack Graphs


Liu, C. , Singhal, A. and Wijesekera, D. (2019), A Layered Graphical Model for Cloud Forensic and Mission Impact Analysis, Advances in Digital Forensics XIV, New Delhi, IN, [online],, (Accessed April 12, 2024)
Created January 31, 2019, Updated October 12, 2021