NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.

Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.

U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Who Touched my Mission: Towards Probabilistic Mission Impact Assessment

Published

Author(s)

Xiaoyan Sun, Anoop Singhal, Peng Liu

Abstract

Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact assessment. A System Object Dependency Graph (SODG) is built to capture the intrusion propagation process at the low operating system level. On top of the SODG, a mission-task-asset (MTA) map can be established to associate the system objects with corresponding tasks and missions. Based on the MTA map, a Bayesian network can be constructed to leverage the collected intrusion evidence and infer the probabilities of tasks and missions being tainted. This approach is promising for effective quantitative mission impact assessment.
Proceedings Title
Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig '15)
Conference Dates
October 12, 2015
Conference Location
Denver, CO, US
Conference Title
Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig '15)
Pub Type
Conferences

Download Paper

https://doi.org/10.1145/2809826.2809834
Local Download

Keywords

attack graphs, Bayesian networks, mission impact assessment, System Object Dependency Graph
Information technology and Cybersecurity and privacy

Citation

Sun, X. , Singhal, A. and Liu, P. (2015), Who Touched my Mission: Towards Probabilistic Mission Impact Assessment, Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig '15), Denver, CO, US, [online], https://doi.org/10.1145/2809826.2809834, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=919037 (Accessed October 16, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created October 11, 2015, Updated October 12, 2021
Was this page helpful?