Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Bayesian Attack Model (BAM) User Story

Technical Report ·
DOI:https://doi.org/10.2172/2589620· OSTI ID:2589620
 [1];  [1];  [2]
  1. Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States)
  2. Sandia National Laboratories (SNL-CA), Livermore, CA (United States)
+ Show Author Affiliations

This document presents a user story for the Bayesian Attack Model (BAM) tool designed to aggregate and analyze cyber-attack observables for operational technology (OT) systems. BAM aims to empower cybersecurity analysts by providing a streamlined interface for collecting observable data from various sources, enabling real-time analysis of potential adversary activity. By enhancing the response capabilities of security teams, BAM facilitates risk-informed decision-making and improves organizational security posture. This user story outlines the key functionalities, user interactions, and requirements necessary to successfully integrate BAM with other security information and event management (SIEM) technology and cybersecurity operations centers (CSOCs).

Research Organization:
Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States)
Sponsoring Organization:
USDOE Office of Cybersecurity, Energy Security, and Emergency Response (CESER); USDOE National Nuclear Security Administration (NNSA)
DOE Contract Number:
NA0003525
OSTI ID:
2589620
Report Number(s):
SAND--2025-11801R; 1786445
Country of Publication:
United States
Language:
English

Similar Records

Bayesian Attack Model (BAM)
Program Document · Tue Jul 16 00:00:00 EDT 2024 · OSTI ID:2406251
Identifying Adversarial Cyber-Activity in Operational Technology Environments Using Bayesian Networks
Journal Article · Sun Sep 07 20:00:00 EDT 2025 · IEEE Transactions on Information Forensics and Security · OSTI ID:3011940

Related Subjects

97 MATHEMATICS AND COMPUTING