Cyber threat metrics.

Frye, Jason Neal; Veitch, Cynthia K; Mateski, Mark Elliot; Michalski, John T; Harris, James Mark; Trevino, Cassandra M; Maruoka, Scott

doi:10.2172/1039394

Title: Cyber threat metrics.

Full Record
Other Related Research

Abstract

Threats are generally much easier to list than to describe, and much easier to describe than to measure. As a result, many organizations list threats. Fewer describe them in useful terms, and still fewer measure them in meaningful ways. This is particularly true in the dynamic and nebulous domain of cyber threats - a domain that tends to resist easy measurement and, in some cases, appears to defy any measurement. We believe the problem is tractable. In this report we describe threat metrics and models for characterizing threats consistently and unambiguously. The purpose of this report is to support the Operational Threat Assessment (OTA) phase of risk and vulnerability assessment. To this end, we focus on the task of characterizing cyber threats using consistent threat metrics and models. In particular, we address threat metrics and models for describing malicious cyber threats to US FCEB agencies and systems.

Authors:: Frye, Jason Neal; Veitch, Cynthia K; Mateski, Mark Elliot; Michalski, John T; Harris, James Mark; Trevino, Cassandra M; Maruoka, Scott

Publication Date:: 2012-03-01

Research Org.:: Sandia National Laboratories (SNL), Albuquerque, NM, and Livermore, CA (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1039394

Report Number(s):: SAND2012-2427
TRN: US201209%%543

DOE Contract Number:: AC04-94AL85000

Resource Type:: Technical Report

Country of Publication:: United States

Language:: English

Subject:: 99 GENERAL AND MISCELLANEOUS//MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE; METRICS; VULNERABILITY; COMPUTERS; SECURITY

Citation Formats


                    Frye, Jason Neal, Veitch, Cynthia K, Mateski, Mark Elliot, Michalski, John T, Harris, James Mark, Trevino, Cassandra M, and Maruoka, Scott. Cyber threat metrics..  United States: N. p., 2012. 
        Web.  doi:10.2172/1039394.

Copy to clipboard


                    Frye, Jason Neal, Veitch, Cynthia K, Mateski, Mark Elliot, Michalski, John T, Harris, James Mark, Trevino, Cassandra M, & Maruoka, Scott. Cyber threat metrics..  United States.  https://doi.org/10.2172/1039394

Copy to clipboard


                    Frye, Jason Neal, Veitch, Cynthia K, Mateski, Mark Elliot, Michalski, John T, Harris, James Mark, Trevino, Cassandra M, and Maruoka, Scott. 2012.  
        "Cyber threat metrics.".  United States.  https://doi.org/10.2172/1039394.  https://www.osti.gov/servlets/purl/1039394.

Copy to clipboard


                    
@article{osti_1039394,

  title        = {Cyber threat metrics.},

  author       = {Frye, Jason Neal and Veitch, Cynthia K and Mateski, Mark Elliot and Michalski, John T and Harris, James Mark and Trevino, Cassandra M and Maruoka, Scott},

  abstractNote = {Threats are generally much easier to list than to describe, and much easier to describe than to measure. As a result, many organizations list threats. Fewer describe them in useful terms, and still fewer measure them in meaningful ways. This is particularly true in the dynamic and nebulous domain of cyber threats - a domain that tends to resist easy measurement and, in some cases, appears to defy any measurement. We believe the problem is tractable. In this report we describe threat metrics and models for characterizing threats consistently and unambiguously. The purpose of this report is to support the Operational Threat Assessment (OTA) phase of risk and vulnerability assessment. To this end, we focus on the task of characterizing cyber threats using consistent threat metrics and models. In particular, we address threat metrics and models for describing malicious cyber threats to US FCEB agencies and systems.},

  doi          = {10.2172/1039394},

  url          = {https://www.osti.gov/biblio/1039394},
  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2012},

  month        = {3}

}

Copy to clipboard

Technical Report:

View Technical Report (0.83 MB)

https://doi.org/10.2172/1039394

Save / Share:

Export Metadata

Save to My Library

Similar records in OSTI.GOV collections:

Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies

Journal Article Zografopoulos, Ioannis; Ospina, Juan; Liu, Xiaorui; ... - IEEE Access

Cyber-physical systems (CPS) are interconnected architectures that employ analog and digital components as well as communication and computational resources for their operation and interaction with the physical environment. CPS constitute the backbone of enterprise (e.g., smart cities), industrial (e.g., smart manufacturing), and critical infrastructure (e.g., energy systems). Thus, their vital importance, interoperability, and plurality of computing devices make them prominent targets for malicious attacks aiming to disrupt their operations. Attacks targeting cyber-physical energy systems (CPES), given their mission-critical nature within the power grid infrastructure, can lead to disastrous consequences. The security of CPES can be enhanced by leveraging testbed capabilitiesmore »« less
https://doi.org/10.1109/ACCESS.2021.3058403
Support for Reactor Operators in Case of Cyber-Security Threats (NEUP Final Report)

Technical Report Smidts, Carol; Ray, Indrajit; Zhu, Quanyan; ...

Increasing use of digital technology in nuclear power plants (NPPs) poses cyber-security as a crucial threat to public safety and to continuous energy production. Cyber-security risks are comprised of complex known and unknown interactions between various entities, system vulnerabilities, network protocols, human users and malicious attacks. There is little understanding or research geared towards plant operators’ response under cyber-security threats and operational procedures to cope with such threats. This is particularly critical when a cyber-security event masquerades as a safety incident or an evolving accident. Instead of leading operators to the remediation of the accident, the masked cyber event maymore »« less
https://doi.org/10.2172/1581617

Full Text Available
Cyber Attack Sequences Generation for Electric Power Grid

Conference Dutta, Ashutosh; Purohit, Sumit; Bhattacharya, Arnab; ...

Security assessment of cyber-physical energy systems (CPESs) such as the electric power grid is a critical operation to maintain availability, reliability, and quality of service in the presence of persistent threats from malicious cyber actors. Existing security assessment approaches such as penetration testing and red teaming rely on subject matter expert experience and forensic cyber analysis of historical events to perform realistic, threat-informed assessments of CPES defense. CPESs have a large attack surface because of the heterogeneity and complexity of underlying topology, devices, measurements, and vulnerabilities. The aforementioned approaches lead to partial coverage of the attack surface with a largemore »« less
https://doi.org/10.1109/MSCPES55116.2022.9770105
Guide for Cyber Assessment of Industrial Control Systems Field Devices.

Technical Report Stamp, Jason; Stinebaugh, Jennifer; Fay, Daniel

Programmable logic controllers (PLCs) and other field devices are important components of many weapons platforms, including vehicles, ships, radar systems, etc. Many have significant cyber vulnerabilities that lead to unacceptable risk. Furthermore, common procedures used during Oper- ational Test and Evaluation (OT&E) may unexpectedly lead to unsafe or severe impacts for the field devices or the underlying physical process. This document describes an assessment methodology that addresses vulnerabilities, mitigations, and safe OT&E. Acknowledgements The authors would like to acknowledge the funding and technical support from the Office of the Director, Operational Test and Evaluation (DOT&E) for the development of thismore »« less
https://doi.org/10.2172/1494181

Full Text Available
Cyber Threat Screening Using a Queuing-Based Game-Theoretic Approach

Journal Article Bhattacharya, Arnab; Bopardikar, Shaunak; Chatterjee, Samrat; ... - Journal of Information Warfare

Dynamic and uncertain security environments, such as cyber systems, often involve strategic interactions among multiple decision-making agents. In this paper, we consider a cybersecurity setting where a system administrator (defender) has to screen malicious service requests of an attacker who seeks to exhaust available cyber resources and inconvenience users with normal requests. We propose a novel cyber-threat inspection model, based on Stackelberg games, that unies aspects of Threat Security Games with the Erlang-B queuing framework to provide equilibrium strategies for both the attacker and defender. In our proposed model, the defender seeks to determine the optimal number of inspection nodesmore »« less

Similar Records