Penetration Testing == POMDP Solving?

Carlos Sarraute 1 Olivier Buffet 2 Joerg Hoffmann 2
2 MAIA - Autonomous intelligent machine
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : Penetration Testing is a methodology for assessing network security, by generating and executing possible attacks. Doing so automatically allows for regular and systematic testing without a prohibitive amount of human labor. A key question then is how to generate the attacks. This is naturally formulated as a planning problem. Previous work used classical planning and hence ignores all the incomplete knowledge that characterizes hacking. More recent work makes strong independence assumptions for the sake of scaling, and lacks a clear formal concept of what the attack planning problem actually is. Herein, we model that problem in terms of partially observable Markov decision processes (POMDP). This grounds penetration testing in a well-researched formalism, highlighting important aspects of this problem's nature. POMDPs allow to model information gathering as an integral part of the problem, thus providing for the first time a means to intelligently mix scanning actions with actual exploits.
Type de document :
Communication dans un congrès
Workshop on Intelligent Security (Security and Artificial Intelligence) - SecArt-11, Jul 2011, Barcelona, Spain. 2011
Liste complète des métadonnées

Littérature citée [13 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00607403
Contributeur : Joerg Hoffmann <>
Soumis le : jeudi 17 novembre 2011 - 17:19:10
Dernière modification le : jeudi 11 janvier 2018 - 06:19:50
Document(s) archivé(s) le : vendredi 16 novembre 2012 - 11:05:56

Fichier

secart11.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00607403, version 1

Collections

Citation

Carlos Sarraute, Olivier Buffet, Joerg Hoffmann. Penetration Testing == POMDP Solving?. Workshop on Intelligent Security (Security and Artificial Intelligence) - SecArt-11, Jul 2011, Barcelona, Spain. 2011. 〈inria-00607403〉

Partager

Métriques

Consultations de la notice

594

Téléchargements de fichiers

108