Title :
Automatic Generation of Security Argument Graphs
Author :
Tippenhauer, Nils Ole ; Temple, William G. ; An Hoa Vu ; Binbin Chen ; Nicol, David M. ; Kalbarczyk, Zbigniew ; Sanders, William H.
Author_Institution :
Singapore Univ. of Technol. & Design, Singapore, Singapore
Abstract :
Graph-based assessment formalisms have proven to be useful in the safety, dependability, and security communities to help stakeholders manage risk and maintain appropriate documentation throughout the system lifecycle. In this paper, we propose a set of methods to automatically construct security argument graphs, a graphical formalism that integrates various security-related information to argue about the security level of a system. Our approach is to generate the graph in a progressive manner by exploiting logical relationships among pieces of diverse input information. Using those emergent argument patterns as a starting point, we define a set of extension templates that can be applied iteratively to grow a security argument graph. Using a scenario from the electric power sector, we demonstrate the graph generation process and highlight its application for system security evaluation in our prototype software tool, Cyber SAGE.
Keywords :
graph theory; power engineering computing; power system management; security of data; software tools; CyberSAGE; argument patterns; automatic security argument graph generation; electric power sector; extension templates; graph generation process; graph-based assessment formalisms; graphical formalism; prototype software tool; security communities; security evaluation; security-related information; system lifecycle; Availability; Context; Labeling; Network topology; Power systems; Safety; Security; Security argument graph; argument patterns; automatic graph generation; extension templates; security assessment;
Conference_Titel :
Dependable Computing (PRDC), 2014 IEEE 20th Pacific Rim International Symposium on
Conference_Location :
Singapore
Print_ISBN :
978-1-4799-6473-4
DOI :
10.1109/PRDC.2014.13
