Expert knowledge elicitation for skill level categorization of attack paths

Terezia Mezesova, Hayretdin Bahsi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Scopus citations

Abstract

Attack graphs deduce the attack paths based on the identified vulnerabilities, the existing network topology, and the applied network access controls. The exploitation likelihood of the paths derived from the Common Vulnerability Scoring System (CVSS) values of the vulnerabilities provides an important input to risk assessments. This paper focuses on the identification of attacker skill levels required for exploiting the attack paths. First, we elicited expert knowledge for the determination of skill level categories and their detailed descriptions. Second, we systematically applied the elicited knowledge to the attack graphs. This skill level categorization method can provide a significant contribution to the design of hands-on offensive cyber games as it enables to balance the skills of participants and difficulty of game tasks. It also improves the threat analysis capability of organizations by demonstrating the possible infiltration ways of threat actors depending on their skill levels.

Original languageEnglish (US)
Title of host publication2019 International Conference on Cyber Security and Protection of Digital Services, Cyber Security 2019
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781728102290
DOIs
StatePublished - Jun 2019
Externally publishedYes
Event5th International Conference on Cyber Security and Protection of Digital Services, Cyber Security 2019 - Oxford, United Kingdom
Duration: Jun 3 2019Jun 4 2019

Publication series

Name2019 International Conference on Cyber Security and Protection of Digital Services, Cyber Security 2019

Conference

Conference5th International Conference on Cyber Security and Protection of Digital Services, Cyber Security 2019
Country/TerritoryUnited Kingdom
CityOxford
Period6/3/196/4/19

Keywords

  • Attack Graphs
  • Attacker Skills
  • Cyber Threat

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Fingerprint

Dive into the research topics of 'Expert knowledge elicitation for skill level categorization of attack paths'. Together they form a unique fingerprint.

Cite this