Title :
Integrated Metamodel for Security Analysis
Author :
Valja, Margus ; Korman, Matus ; Shahzad, Khurram ; Johnson, Pontus
Author_Institution :
KTH R. Inst. of Technol., Stockholm, Sweden
Abstract :
This paper proposes a metamodel for analyzing security aspects of enterprise architecture by combining analysis of cybersecurity with analysis of interoperability and availability. The metamodel extends an existing attack graph based metamodel for cyber security modeling and evaluation, P2CySeMoL, and incorporates several new elements and evaluation rules. The approach improves security analysis by combining two ways of evaluating reach ability: one which considers ordinary user activity and another, which considers technically advanced techniques for penetration and attack. It is thus permitting to evaluate security in interoperability terms by revealing attack possibilities of legitimate users. Combined with data import from various sources, like an enterprise architecture data repository, the instantiations of the proposed metamodel allow for a more holistic overview of the threats to the architecture than the previous version. Additional granularity is added to the analysis with the reach ability need concept and by enabling the consideration of unavailable and unreliable systems.
Keywords :
open systems; reachability analysis; security of data; P2CySeMo; attack graph based metamodel; attack possibilities; cybersecurity; cybersecurity evaluation; cybersecurity modeling; enterprise architecture data repository; integrated metamodel; interoperability terms; legitimate users; reachability; security analysis; security aspects; Analytical models; Availability; Computer architecture; Interoperability; Predictive models; Security; Unified modeling language; cybersecurity analysis; metamodel;
Conference_Titel :
System Sciences (HICSS), 2015 48th Hawaii International Conference on
Conference_Location :
Kauai, HI
DOI :
10.1109/HICSS.2015.613
