Method for Attack Tree Data Transformation and Import Into IT Risk Analysis Expert Systems
| Autor: | Nikolaj Goranin, Donatas Vitkus, Jonathan Salter, Dainius Čeponis |
|---|---|
| Jazyk: | angličtina |
| Rok vydání: | 2020 |
| Předmět: |
Computer science
computer.internet_protocol risk analysis information security Data transformation Attack tree expert systems 02 engineering and technology computer.software_genre lcsh:Technology lcsh:Chemistry JESS ATTop Risk analysis (business) 0202 electrical engineering electronic engineering information engineering General Materials Science Instrumentation lcsh:QH301-705.5 Fluid Flow and Transfer Processes business.industry lcsh:T Process Chemistry and Technology General Engineering 020206 networking & telecommunications Information security Expert system lcsh:QC1-999 Mitre transformation Computer Science Applications IT risk Knowledge base lcsh:Biology (General) lcsh:QD1-999 lcsh:TA1-2040 020201 artificial intelligence & image processing business Software engineering lcsh:Engineering (General). Civil engineering (General) attack trees computer XML lcsh:Physics |
| Zdroj: | Applied Sciences Volume 10 Issue 23 Applied Sciences, Vol 10, Iss 8423, p 8423 (2020) |
| Popis: | Information technology (IT) security risk analysis preventatively helps organizations in identifying their vulnerable systems or internal controls. Some researchers propose expert systems (ES) as the solution for risk analysis automation since risk analysis by human experts is expensive and timely. By design, ES need a knowledge base, which must be up to date and of high quality. Manual creation of databases is also expensive and cannot ensure stable information renewal. These facts make the knowledge base automation process very important. This paper proposes a novel method of converting attack trees to a format usable by expert systems for utilizing the existing attack tree repositories in facilitating information and IT security risk analysis. The method performs attack tree translation into the Java Expert System Shell (JESS) format, by consistently applying ATTop, a software bridging tool that enables automated analysis of attack trees using a model-driven engineering approach, translating attack trees into the eXtensible Markup Language (XML) format, and using the newly developed ATES (attack trees to expert system) program, performing further XML conversion into JESS compatible format. The detailed method description, along with samples of attack tree conversion and results of conversion experiments on a significant number of attack trees, are presented and discussed. The results demonstrate the high method reliability rate and viability of attack trees as a source for the knowledge bases of expert systems used in the IT security risk analysis process. This article belongs to the Special Issue Human-Centered Computing and Information Security: Recent Advances & Intelligent Applications |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|