Skip to main content
SpringerLink
Log in

Threat Modeling for Cyber Range: An Ontology-Based Approach

  • Conference paper
  • First Online:
Communications, Signal Processing, and Systems (CSPS 2018)

Part of the book series: Lecture Notes in Electrical Engineering ((LNEE,volume 517))

Abstract

Cyber Range has become a very important means to support tasks such as network security technology validation, network weapon testing, training of network attack and defense and network risk assessment. However, Cyber Ranger faces many security threats from internal and external environments. In order to establish an adaptive security protection system, threat modeling is needed to analyze potential threats and provide security solutions. In this paper, we present a novel threat modeling method for Cyber Range. Based on ontology and knowledge graph, our research focuses on the design of threat ontology, knowledge base, and unified description specification. Typical cases are given to demonstrate our approach. This study could serve as groundwork for further Cyber Range researches including security architecture, situation awareness and intelligent decision-making.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 139.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 179.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 249.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Hernan, S., Lambert, S., Ostwald, T., et al.: Threat modeling-uncover security design flaws using the stride approach. MSDN Mag.-Louisville 68–75 (2006)

    Google Scholar 

  2. Schneier, B.: Attack trees—modeling security threats. Dr, Dobb’s J. 24 (1999)

    Google Scholar 

  3. Ericson, C.A.: Fault tree analysis. Hazard Anal. Tech. Syst. Saf. 183–221 (2005)

    Google Scholar 

  4. Ortalo, R., Deswarte, Y., Kaaniche, M.: Experimenting with quantitative evaluation tools for monitoring operational security. IEEE Trans. Softw. Eng. 25(5), 633–650 (1999)

    Article  Google Scholar 

  5. Phillips, C., Swiler, L.P.: A Graph-Based System for Network-Vulnerability Analysis, 1998. ACM (1998)

    Google Scholar 

  6. Jajodia, S., Noel, S.: Topological vulnerability analysis. In: Jajodia, S., Liu, P., Swarup, V., Wang, C. (eds.) Cyber Situational Awareness. Advances in Information Security, vol. 46. Springer, Boston, MA (2010)

    Google Scholar 

  7. Moore, A.P., Kennedy, K.A., Dover, T.J.: Introduction to the special issue on insider threat modeling and simulation. Comput. Math. Organ. Theory 22(3), 1–12 (2016)

    Article  Google Scholar 

  8. Barnum, S.: Standardizing cyber threat intelligence information with the structured threat information eXpression (STIX). MITRE Corp. 11, 1–22 (2012)

    Google Scholar 

  9. Gibb, W.: Nettraveler in openioc format. FireEye (2013)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. China Academy of Electronics and Information Technology, Beijing, 100041, China

    Lei Gong & Yu Tian

Authors
  1. Lei Gong
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yu Tian
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Lei Gong .

Editor information

Editors and Affiliations

  1. Department of Electrical Engineering, University of Texas at Arlington, Arlington, TX, USA

    Qilian Liang

  2. School of Information and Communication Engineering, Dalian University of Technology, Dalian, China

    Xin Liu

  3. School of Information Science and Technology, Dalian Maritime University, Dalian, China

    Zhenyu Na

  4. College of Electronic and Communication Engineering, Tianjin Normal University, Tianjin, China

    Wei Wang

  5. College of Electronic and Communication Engineering, Tianjin Normal University, Tianjin, China

    Jiasong Mu

  6. College of Electronic and Communication Engineering, Tianjin Normal University, Tianjin, China

    Baoju Zhang

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Gong, L., Tian, Y. (2020). Threat Modeling for Cyber Range: An Ontology-Based Approach. In: Liang, Q., Liu, X., Na, Z., Wang, W., Mu, J., Zhang, B. (eds) Communications, Signal Processing, and Systems. CSPS 2018. Lecture Notes in Electrical Engineering, vol 517. Springer, Singapore. https://doi.org/10.1007/978-981-13-6508-9_128

Download citation

  • DOI: https://doi.org/10.1007/978-981-13-6508-9_128

  • Published:

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-13-6507-2

  • Online ISBN: 978-981-13-6508-9

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation