Cyber resilience-by-construction: Modeling, measuring & verifying

Yasir Imtiaz Khan; Ehab Al-Shaer; Usman Rauf

doi:10.1145/2809826.2809836

Cyber resilience-by-construction: Modeling, measuring & verifying

Yasir Imtiaz Khan, Ehab Al-Shaer, Usman Rauf

The University of North Carolina at Charlotte

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding › peer-review

5 Citations (Scopus)

Abstract

The need of cyber security is increasing as cyber attacks are escalating day by day. Cyber attacks are now so many and sophisticated that many will unavoidably get through. Therefore, there is an immense need to employ resilient architectures to defend known or unknown threats. Engineering resilient system/infrastructure is a challenging task, that implies how to measure the resilience and how to obtain sufficient resilience necessary to maintain its service delivery under diverse situations. This paper has two fold objective, the first is to propose a formal approach to measure cyber resilience from different aspects (i.e., attacks, failures) and at different levels (i.e., pro-active, resistive and reactive). To achieve the first objective, we propose a formal framework named as: Cyber Resilience Engineering Framework (CREF). The second objective is to build a resilient system by construction. The idea is to build a formal model of a cyber system, which is initially not resilient with respect to attacks. Then by systematic refinements of the formal model and by its model checking, we attain resiliency. We exemplify our technique through the case study of simple cyber security device (i.e., network firewall).

Original language	English
Title of host publication	SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense
Publisher	Association for Computing Machinery (ACM)
Pages	9-14
Number of pages	6
ISBN (Print)	978-1-4503-3821-9
DOIs	https://doi.org/10.1145/2809826.2809836
Publication status	Published - 12 Oct 2015
Event	SafeConfig'15 - Workshop on Automated Decision Making for Active Cyber Defense - Denver, United States Duration: 12 Oct 2015 → 12 Oct 2015 https://www.sigsac.org/ccs/CCS2015/safeconfig2015-toc.html

Workshop

Workshop	SafeConfig'15 - Workshop on Automated Decision Making for Active Cyber Defense
Abbreviated title	SafeConfig'15
Country/Territory	United States
City	Denver
Period	12/10/15 → 12/10/15
Internet address	https://www.sigsac.org/ccs/CCS2015/safeconfig2015-toc.html

Keywords

Algebraic petri nets
Cyber resilience
Firewall
Model checking

Access to Document

10.1145/2809826.2809836

Cite this

Cyber resilience-by-construction: Modeling, measuring & verifying. / Khan, Yasir Imtiaz; Al-Shaer, Ehab; Rauf, Usman.
SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense. Association for Computing Machinery (ACM), 2015. p. 9-14.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding › peer-review

Khan, YI, Al-Shaer, E & Rauf, U 2015, Cyber resilience-by-construction: Modeling, measuring & verifying. in SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense. Association for Computing Machinery (ACM), pp. 9-14, SafeConfig'15 - Workshop on Automated Decision Making for Active Cyber Defense, Denver, United States, 12/10/15. https://doi.org/10.1145/2809826.2809836

@inproceedings{5c49e45923d949218b2c238b3c439ec7,

title = "Cyber resilience-by-construction: Modeling, measuring & verifying",

abstract = "The need of cyber security is increasing as cyber attacks are escalating day by day. Cyber attacks are now so many and sophisticated that many will unavoidably get through. Therefore, there is an immense need to employ resilient architectures to defend known or unknown threats. Engineering resilient system/infrastructure is a challenging task, that implies how to measure the resilience and how to obtain sufficient resilience necessary to maintain its service delivery under diverse situations. This paper has two fold objective, the first is to propose a formal approach to measure cyber resilience from different aspects (i.e., attacks, failures) and at different levels (i.e., pro-active, resistive and reactive). To achieve the first objective, we propose a formal framework named as: Cyber Resilience Engineering Framework (CREF). The second objective is to build a resilient system by construction. The idea is to build a formal model of a cyber system, which is initially not resilient with respect to attacks. Then by systematic refinements of the formal model and by its model checking, we attain resiliency. We exemplify our technique through the case study of simple cyber security device (i.e., network firewall).",

keywords = "Algebraic petri nets, Cyber resilience, Firewall, Model checking",

author = "Khan, {Yasir Imtiaz} and Ehab Al-Shaer and Usman Rauf",

year = "2015",

month = oct,

day = "12",

doi = "10.1145/2809826.2809836",

language = "English",

isbn = "978-1-4503-3821-9",

pages = "9--14",

booktitle = "SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense",

publisher = "Association for Computing Machinery (ACM)",

address = "United States",

note = "SafeConfig'15 - Workshop on Automated Decision Making for Active Cyber Defense, SafeConfig'15 ; Conference date: 12-10-2015 Through 12-10-2015",

url = "https://www.sigsac.org/ccs/CCS2015/safeconfig2015-toc.html",

}

TY - GEN

T1 - Cyber resilience-by-construction

T2 - SafeConfig'15 - Workshop on Automated Decision Making for Active Cyber Defense

AU - Khan, Yasir Imtiaz

AU - Al-Shaer, Ehab

AU - Rauf, Usman

PY - 2015/10/12

Y1 - 2015/10/12

N2 - The need of cyber security is increasing as cyber attacks are escalating day by day. Cyber attacks are now so many and sophisticated that many will unavoidably get through. Therefore, there is an immense need to employ resilient architectures to defend known or unknown threats. Engineering resilient system/infrastructure is a challenging task, that implies how to measure the resilience and how to obtain sufficient resilience necessary to maintain its service delivery under diverse situations. This paper has two fold objective, the first is to propose a formal approach to measure cyber resilience from different aspects (i.e., attacks, failures) and at different levels (i.e., pro-active, resistive and reactive). To achieve the first objective, we propose a formal framework named as: Cyber Resilience Engineering Framework (CREF). The second objective is to build a resilient system by construction. The idea is to build a formal model of a cyber system, which is initially not resilient with respect to attacks. Then by systematic refinements of the formal model and by its model checking, we attain resiliency. We exemplify our technique through the case study of simple cyber security device (i.e., network firewall).

AB - The need of cyber security is increasing as cyber attacks are escalating day by day. Cyber attacks are now so many and sophisticated that many will unavoidably get through. Therefore, there is an immense need to employ resilient architectures to defend known or unknown threats. Engineering resilient system/infrastructure is a challenging task, that implies how to measure the resilience and how to obtain sufficient resilience necessary to maintain its service delivery under diverse situations. This paper has two fold objective, the first is to propose a formal approach to measure cyber resilience from different aspects (i.e., attacks, failures) and at different levels (i.e., pro-active, resistive and reactive). To achieve the first objective, we propose a formal framework named as: Cyber Resilience Engineering Framework (CREF). The second objective is to build a resilient system by construction. The idea is to build a formal model of a cyber system, which is initially not resilient with respect to attacks. Then by systematic refinements of the formal model and by its model checking, we attain resiliency. We exemplify our technique through the case study of simple cyber security device (i.e., network firewall).

KW - Algebraic petri nets

KW - Cyber resilience

KW - Firewall

KW - Model checking

U2 - 10.1145/2809826.2809836

DO - 10.1145/2809826.2809836

M3 - Conference proceeding

AN - SCOPUS:84958677081

SN - 978-1-4503-3821-9

SP - 9

EP - 14

BT - SafeConfig 2015 - Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense

PB - Association for Computing Machinery (ACM)

Y2 - 12 October 2015 through 12 October 2015

ER -

Cyber resilience-by-construction: Modeling, measuring & verifying

Abstract

Workshop

Keywords

Access to Document

Fingerprint

Cite this