nach oben

Erschienen in:

2024 | OriginalPaper | Buchkapitel

5. Multi-Path Attack Graph Algorithm

verfasst von : Martin Salfer

Erschienen in: Automotive Security Analyzer for Exploitability Risks

Verlag: Springer Fachmedien Wiesbaden

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

The (Multi-Path Attack Graph Algorithm) chapter contributes an algorithm (P3Salfer) and an implementation for generating multi-path attack graphs, which are a superset of single-path attack graphs by allowing several paths toward a goal node for a more realistic risk result. Bayesian networks are also generated and inferred with an algorithm (P3Bayes) for comparison.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Single-Path Attack Graph Algorithm

Nächstes Kapitel Conclusion

UnBBayes is an open-source framework for probabilistic models. UnBBayes has many academic contributors, registered in 2002, and is still active; see https://sourceforge.net/projects/unbbayes/.

nmap is a famous network discovery and security auditing tool; see https://nmap.org/.

The monotonicity property might not hold in domains and cases outside of an automotive on-board network, e.g., in the case of Advanced Persistent Threats (APTs), where game theory is necessary to model the attacker and defender behavior.

libdbus is a software implementation of D-Bus (Desktop Bus), an inter-process communication mechanism made initially for desktops, e.g., KDE and GNOME. Now running in several car makes.

The “attackability,” becoming successfully attacked, is not to be confused with “attack ability,” an attacker’s power.

MapReduce [77] is a programming model with a split-apply-combine strategy for distributing and scaling algorithms by many independent execution units. MapReduce became famous for scaling web searches.

The junction tree algorithm is applied on Bayesian networks for inferencing; see details in Section 2.5.3.2 (Inference Algorithms) on page 61.

An astronomical progress in memory research and development is not to be expected as the universe appears to consist of only circa \(2^{300}\) atoms.

The used JDK is version 8u131 for x86-64-bit and was released in April 2017.

UnBBayes: https://sourceforge.net/projects/unbbayes/.

Jayes: https://eclipse.org/recommenders/jayes/.

Banjo: https://users.cs.duke.edu/~amink/software/banjo/.

SMILE: http://genie.sis.pitt.edu/.

JavaBayes blog post: https://dataworks-inc.com/simple-bayesian-network-inference-using-netica-and-javabayes/.

The attack graphs were exported as a DOT file and fed to Graphviz for generating images of the attack graphs; see also Section 3.8.2.2 (Libraries) on page 116.

Gephi: https://gephi.org/, retrieved on 2020-04-04.

gexf4j: https://github.com/francesco-ficarola/gexf4j, retrieved on 2020-04-04.

Graphviz: https://www.graphviz.org/, retrieved on 2020-04-04.

GraphStream: https://graphstream-project.org/, retrieved on 2020-04-04.

JUNG: http://jung.sourceforge.net/, retrieved on 2020-04-04.

JGraphT: https://jgrapht.org/visualizations.html, retrieved on 2020-04-04.

Prefuse: https://en.wikipedia.org/wiki/Prefuse, retrieved on 2020-04-04.

Prefuse source code: https://github.com/prefuse/Prefuse.

The newest GEXF format version is 1.2draft from 2010–12, retrieved on 2020-05-02.

VisualVM details can be found in Section 3.8.2.3 (Development Tools) on page 118.

The approach has been designed for and tested on development data of an actual mass-produced vehicle. Hence, an NDA (Non-Disclosure Agreement) became obligatory and prohibits the disclosure of details, even the make and model.

Creating and using a generalized synthetic automotive on-board network model was also done in a similar project: EndorA [93]. Researchers designed an on-board network that is typical for a contemporary vehicle.

Chain parameters: \(s_{sv} = 0.999\); \(a_{b\mu } = n * C_E (a, e)\).

Mesh parameters: \(s_{sv} = 0.2\); \(a_{b\mu } = 3 * C_E (a, e)\).

Multibus parameters: \(s_{sv} = 0.9\); \(a_{b\mu } = 3 * C_E (a, e)\); 25 nodes a bus.

This CPU has two physical cores, a Haswell microarchitecture on 22nm, and was released in 2013.

Java memory units are traditionally defined with a binary multiplier (1 024) instead of a decimal one (1 000), i.e., Xmx3G allows 3.0 GiB \(\approx \) 3.2 GB.

The Java Virtual Machine is the logic that executes the Java bytecode. The JVM can also compile the bytecode to machine code.

PGF/TikZ: https://github.com/pgf-tikz/pgf

Princeton researchers warn of floating-point operation errors and urge using libraries; see [269] and Section 3.8.2.2.

Titel: Multi-Path Attack Graph Algorithm
verfasst von: Martin Salfer
Verlag: Springer Fachmedien Wiesbaden
Buch: Automotive Security Analyzer for Exploitability Risks
Print ISBN: 978-3-658-43505-9

Electronic ISBN: 978-3-658-43506-6

Copyright-Jahr: 2024
DOI: https://doi.org/10.1007/978-3-658-43506-6_5

Neuer Inhalt

Bildnachweise

VDI-Icon, Profil Icon, inhalt2, Springer Professional Modul/© Springer Fachmedien Wiesbaden GmbH, Die Gewinner und Laudatoren des Sustainability Award in Automotive 2024/© Uli Regenscheit | ATZlive, Search Icon, Banner Hanser, Suresh Vittal/© Alteryx, Additiv gefertigte Teile/© Marina_Skoropadskaya | Getty Images | iStock, Warnschild "Land unter"/© Bluedesign / Fotolia, Zeitschrift Wissensmanagement Cover, PatentFit-Logo/© Springer Fachmedien Wiesbaden GmbH, ATZ-Webinar: Prototypenfreie Entwicklung durch Offline- und Driver-in-the-Loop-HiL-Tests /© (c) VI-grade, chassis.tech plus 2023/© [M] ATZlive / TÜV SÜD PRODUCT SERVICE GMBH, adäsion-Webinar-Matinee/© krystiannawrocki_ Getty Images

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Neuer Inhalt

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.