Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Who Touched my Mission: Towards Probabilistic Mission Impact Assessment

Published

Author(s)

Xiaoyan Sun, Anoop Singhal, Peng Liu

Abstract

Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact assessment. A System Object Dependency Graph (SODG) is built to capture the intrusion propagation process at the low operating system level. On top of the SODG, a mission-task-asset (MTA) map can be established to associate the system objects with corresponding tasks and missions. Based on the MTA map, a Bayesian network can be constructed to leverage the collected intrusion evidence and infer the probabilities of tasks and missions being tainted. This approach is promising for effective quantitative mission impact assessment.
Proceedings Title
Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig '15)
Conference Dates
October 12, 2015
Conference Location
Denver, CO, US
Conference Title
Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig '15)

Keywords

attack graphs, Bayesian networks, mission impact assessment, System Object Dependency Graph

Citation

Sun, X. , Singhal, A. and Liu, P. (2015), Who Touched my Mission: Towards Probabilistic Mission Impact Assessment, Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig '15), Denver, CO, US, [online], https://doi.org/10.1145/2809826.2809834, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=919037 (Accessed May 24, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created October 11, 2015, Updated October 12, 2021