Skip to main content
SpringerLink
Log in

Tools for Generating and Analyzing Attack Graphs

  • Conference paper
Book cover Formal Methods for Components and Objects (FMCO 2003)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3188))

Included in the following conference series:

Abstract

Attack graphs depict ways in which an adversary exploits system vulnerabilities to achieve a desired state. System administrators use attack graphs to determine how vulnerable their systems are and to determine what security measures to deploy to defend their systems. In this paper, we present details of an example to illustrate how we specify and analyze network attack models. We take these models as input to our attack graph tools to generate attack graphs automatically and to analyze system vulnerabilities. While we have published our generation and analysis algorithms in earlier work, the presentation of our example and toolkit is novel to this paper.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Ammann, P., Wijesekera, D., Kaushik, S.: Scalable, graph-based network vulnerability analysis. In: 9th ACM Conference on Computer and Communications Security, pp. 217–224 (2002)

    Google Scholar 

  2. Ausiello, G., D’Atri, A., Protasi, M.: Structure preserving reductions among convex optimization problems. Journal of Computational System Sciences 21, 136–153 (1980)

    Article  MathSciNet  MATH  Google Scholar 

  3. Cormen, T.H., Leiserson, C.E., Rivest, R.L.: Introduction to Algorithms. MIT Press, Cambridge (1985)

    MATH  Google Scholar 

  4. Cotse.net. Vulnerability Scanners., http://www.cotse.com/tools/vuln.htm

  5. Cuppens, F., Miege, A.: Alert correlation in a cooperative intrusion detection framework. In: 23rd IEEE Symposium on Security and Privacy (May 2002)

    Google Scholar 

  6. Cuppens, F., Ortalo, R.: Lambda: A language to model a database for detection of attacks. In: Debar, H., Mé, L., Wu, S.F. (eds.) RAID 2000. LNCS, vol. 1907, pp. 197–216. Springer, Heidelberg (2000)

    Chapter  Google Scholar 

  7. Dacier, M.: Towards Quantitative Evaluation of Computer Security. PhD thesis, Institut National Polytechnique de Toulouse (December 1994)

    Google Scholar 

  8. Deraison, R.: Nessus Scanner., http://www.nessus.org

  9. Jha, S., Sheyner, O., Wing, J.M.: Minimization and reliability analyses of attack graphs. Technical Report CMU-CS-02-109, Carnegie Mellon University (February 2002)

    Google Scholar 

  10. Jha, S., Sheyner, O., Wing, J.M.: Two formal analyses of attack graphs. In: Proceedings of the15th IEEE Computer Security FoundationsWorkshop, Nova Scotia, Canada, June 2002, pp. 49–63 (2002)

    Google Scholar 

  11. Jha, S., Wing, J.: Survivability analysis of networked systems. In: Proceedings of the International Conference on Software Engineering, Toronto, Canada (May 2001)

    Google Scholar 

  12. Ortalo, R., Dewarte, Y., Kaaniche, M.: Experimenting with quantitative evaluation tools for monitoring operational security. IEEETransactions on Software Engineering 25(5), 633–650 (1999)

    Article  Google Scholar 

  13. Phillips, C.A., Swiler, L.P.: A graph-based system for network vulnerability analysis. In: New Security Paradigms Workshop, pp. 71–79 (1998)

    Google Scholar 

  14. Ramsdell, J.: Frame propagation. MITRE Corp. (2001)

    Google Scholar 

  15. Ritchey, R.W., Ammann, P.: Using model checking to analyze network vulnerabilities. In: Proceedings of the IEEE Symposium on Security and Privacy, May 2001, pp. 156–165 (2001)

    Google Scholar 

  16. Sheyner, O.:Scenario Graphs and Attack Graphs. PhD thesis, Carnegie Mellon University (2004)

    Google Scholar 

  17. Sheyner, O., Haines, J., Jha, S., Lippmann, R., Wing, J.: Automated generation and analysis of attack graphs. In: Proceedings of the IEEE Symposium on Security and Privacy (2002)

    Google Scholar 

  18. SMV. SMV:ASymbolic Model Checker, http://www.cs.cmu.edu/~modelcheck/

  19. Swiler, L.P., Phillips, C., Ellis, D., Chakerian, S.: Computer-attack graph generation tool. In: Proceedings of the DARPA Information Survivability Conference and Exposition (June 2000)

    Google Scholar 

  20. Templeton, S., Levitt, K.: A requires/provides model for computer attacks. In: Proceedings of the New Security Paradigms Workshop, Cork, Ireland (2000)

    Google Scholar 

  21. Vigna, G., Kemmerer, R.A.: Netstat:A network-based intrusion detection system. Journal of Computer Security 7(1) (1999)

    Google Scholar 

  22. Common Vulnerabilities and Exposures, http://www.cve.mitre.org

Download references

Author information

Authors and Affiliations

  1. Computer Science Department, Carnegie Mellon University, 5000 Forbes Avenue, Pittsburgh, PA, 15213, USA

    Oleg Sheyner & Jeannette Wing

Authors
  1. Oleg Sheyner
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jeannette Wing
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Centre for Mathematics and Computer Science, CWI, Kruislaan 413, 1098, Amsterdam, SJ, The Netherlands

    Frank S. de Boer

  2. Leiden Institute of Advanced Computer Science, Leiden University, P.O. Box 9512, 2300, Leiden, RA, The Netherlands

    Marcello M. Bonsangue

  3. Centre Equitation, VERIMAG, 2 Avenue de Vignate, 38610, Grenoble-Gières, France

    Susanne Graf

  4. Institute of Computer Science and Applied Mathematics, Christian-Albrechts University Kiel, Hermann-Rodewald-Straße 3, 24118, Kiel, Germany

    Willem-Paul de Roever

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Sheyner, O., Wing, J. (2004). Tools for Generating and Analyzing Attack Graphs. In: de Boer, F.S., Bonsangue, M.M., Graf, S., de Roever, WP. (eds) Formal Methods for Components and Objects. FMCO 2003. Lecture Notes in Computer Science, vol 3188. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30101-1_17

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-30101-1_17

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22942-1

  • Online ISBN: 978-3-540-30101-1

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation