Decentralized Semantic Threat Graphs

Abstract : Threat knowledge-bases such as those maintained by MITRE and NIST provide a basis with which to mitigate known threats to an enterprise. These centralised knowledge-bases assume a global and uniform level of trust for all threat and countermeasure knowledge. However, in practice these knowledge-bases are composed of threats and countermeasures that originate from a number of threat providers, for example Bugtraq. As a consequence, threat knowledge consumers may only wish to trust knowledge about threats and countermeasures that have been provided by a particular provider or set of providers. In this paper, a trust management approach is taken with respect to threat knowledge-bases. This provides a basis with which to decentralize and delegate trust for knowledge about threats and their mitigation to one or more providers. Threat knowledge-bases are encoded as Semantic Threat Graphs. An ontology-based delegation scheme is proposed to manage trust across a model of distributed Semantic Threat Graph knowledge-bases.
Document type :
Conference papers
Liste complète des métadonnées

https://hal.inria.fr/hal-01534768
Contributor : Hal Ifip <>
Submitted on : Thursday, June 8, 2017 - 11:06:32 AM
Last modification on : Friday, October 13, 2017 - 5:08:42 PM
Document(s) archivé(s) le : Saturday, September 9, 2017 - 12:51:04 PM

File

978-3-642-31540-4_14_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Simon Foley, William Fitzgerald. Decentralized Semantic Threat Graphs. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. pp.177-192, ⟨10.1007/978-3-642-31540-4_14⟩. ⟨hal-01534768⟩

Share

Metrics

Record views

138

Files downloads

35