Title :
Fast model-based penetration testing
Author :
Singh, Sankalp ; Lyons, James ; Nicol, David M.
Author_Institution :
Dept. of Comput. Sci., Illinois Univ., Urbana, IL, USA
Abstract :
Traditional approaches to security evaluation have been based on penetration testing of real systems, or analysis of formal models of such systems. The former suffer from the problem that the security metrics are based on only a few of the possible paths through the system. The latter suffer from the inability to analyze detailed system descriptions due to the rapid explosion of state space sizes, which render the models intractable for tools such as model checkers. We propose an approach to obtain statistically valid estimates of security metrics by performing repeated penetration testing of detailed system models. We make use of importance sampling techniques to help reduce the variance of our estimates, and achieve relative error bounds quickly. We validate our approach by estimating security metrics of a large model with more than 21700 possible states.
Keywords :
digital simulation; error statistics; formal verification; importance sampling; real-time systems; testing; fast model-based penetration testing; formal model; importance sampling; real systems; relative error bound; security evaluation; security metrics; Analytical models; Automatic testing; Computer science; Explosions; Information security; Monte Carlo methods; Performance evaluation; State estimation; State-space methods; System testing;
Conference_Titel :
Simulation Conference, 2004. Proceedings of the 2004 Winter
Print_ISBN :
0-7803-8786-4
DOI :
10.1109/WSC.2004.1371331
