Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture

Title: Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture

Abstract

Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture are described. According to one aspect, a computer-implemented security evaluation method includes accessing information regarding a physical architecture and a cyber architecture of a facility, building a model of the facility comprising a plurality of physical areas of the physical architecture, a plurality of cyber areas of the cyber architecture, and a plurality of pathways between the physical areas and the cyber areas, identifying a target within the facility, executing the model a plurality of times to simulate a plurality of attacks against the target by an adversary traversing at least one of the areas in the physical domain and at least one of the areas in the cyber domain, and using results of the executing, providing information regarding a security risk of the facility with respect to the target.

Inventors:: Muller, George; Perkins, Casey J.; Lancaster, Mary J.; MacDonald, Douglas G.; Clements, Samuel L.; Hutton, William J.; Patrick, Scott W.; Key, Bradley Robert

Issue Date:: 2015-07-28

Research Org.:: Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1202321

Patent Number(s):: 9092631

Application Number:: 14/055,776

Assignee:: Battelle Memorial Institute (Richland, WA)

Patent Classifications (CPCs):: G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION

Show more

G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
G06F21/577 - {Assessing vulnerabilities and evaluating computer system security}

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
H04L63/1433 - {Vulnerability analysis}

Show less

DOE Contract Number:: AC05-76RL01830

Resource Type:: Patent

Resource Relation:: Patent File Date: 2013 Oct 16

Country of Publication:: United States

Language:: English

Subject:: 97 MATHEMATICS AND COMPUTING

Citation Formats


                    Muller, George, Perkins, Casey J., Lancaster, Mary J., MacDonald, Douglas G., Clements, Samuel L., Hutton, William J., Patrick, Scott W., and Key, Bradley Robert. Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture.  United States: N. p., 2015. 
        Web.

Copy to clipboard


                    Muller, George, Perkins, Casey J., Lancaster, Mary J., MacDonald, Douglas G., Clements, Samuel L., Hutton, William J., Patrick, Scott W., & Key, Bradley Robert. Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture.  United States.

Copy to clipboard


                    Muller, George, Perkins, Casey J., Lancaster, Mary J., MacDonald, Douglas G., Clements, Samuel L., Hutton, William J., Patrick, Scott W., and Key, Bradley Robert. Tue .  
        "Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture".  United States.  https://www.osti.gov/servlets/purl/1202321.

Copy to clipboard


                    
@article{osti_1202321,

  title        = {Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture},

  author       = {Muller, George and Perkins, Casey J. and Lancaster, Mary J. and MacDonald, Douglas G. and Clements, Samuel L. and Hutton, William J. and Patrick, Scott W. and Key, Bradley Robert},

  abstractNote = {Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture are described. According to one aspect, a computer-implemented security evaluation method includes accessing information regarding a physical architecture and a cyber architecture of a facility, building a model of the facility comprising a plurality of physical areas of the physical architecture, a plurality of cyber areas of the cyber architecture, and a plurality of pathways between the physical areas and the cyber areas, identifying a target within the facility, executing the model a plurality of times to simulate a plurality of attacks against the target by an adversary traversing at least one of the areas in the physical domain and at least one of the areas in the cyber domain, and using results of the executing, providing information regarding a security risk of the facility with respect to the target.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2015},

  month        = {7}

}

Copy to clipboard

Patent:

View Patent

Save / Share:

Export Metadata

Save to My Library

Works referenced in this record:

Modeling Modern Network Attacks and Countermeasures Using Attack Graphs
conference, December 2009

Ingols, Kyle; Chu, Matthew; Lippmann, Richard
2009 Annual Computer Security Applications Conference (ACSAC)
https://doi.org/10.1109/ACSAC.2009.21

Cyber/physical security vulnerability assessment integration
conference, February 2013

MacDonald, D.; Clements, S. L.; Patrick, S. W.
2013 IEEE PES Innovative Smart Grid Technologies Conference (ISGT 2013), 2013 IEEE PES Innovative Smart Grid Technologies Conference (ISGT)
https://doi.org/10.1109/ISGT.2013.6497883

Quantitative assessment of cyber security risk using bayesian network-based model
conference, April 2009

Mo, Sheung Yin Kevin; Beling, Peter A.; Crowther, Kenneth G.
2009 Systems and Information Engineering Design Symposium (SIEDS)
https://doi.org/10.1109/SIEDS.2009.5166177

Similar Records in DOE Patents and OSTI.GOV collections:

Methods of defining ontologies, word disambiguation methods, computer systems, and articles of manufacture

Patent Sanfilippo, Antonio P [Richland, WA]; Tratz, Stephen C [Richland, WA]; Gregory, Michelle L [Richland, WA]; ...

Methods of defining ontologies, word disambiguation methods, computer systems, and articles of manufacture are described according to some aspects. In one aspect, a word disambiguation method includes accessing textual content to be disambiguated, wherein the textual content comprises a plurality of words individually comprising a plurality of word senses, for an individual word of the textual content, identifying one of the word senses of the word as indicative of the meaning of the word in the textual content, for the individual word, selecting one of a plurality of event classes of a lexical database ontology using the identified word sensemore »« less
Full Text Available
Data graphing methods, articles of manufacture, and computing devices

Patent Wong, Pak Chung; Mackey, Patrick S.; Cook, Kristin A.; ...

Data graphing methods, articles of manufacture, and computing devices are described. In one aspect, a method includes accessing a data set, displaying a graphical representation including data of the data set which is arranged according to a first of different hierarchical levels, wherein the first hierarchical level represents the data at a first of a plurality of different resolutions which respectively correspond to respective ones of the hierarchical levels, selecting a portion of the graphical representation wherein the data of the portion is arranged according to the first hierarchical level at the first resolution, modifying the graphical representation by arrangingmore »« less
Full Text Available
Impedance-estimation methods, modeling methods, articles of manufacture, impedance-modeling devices, and estimated-impedance monitoring systems

Patent Richardson, John G [Idaho Falls, ID]

An impedance estimation method includes measuring three or more impedances of an object having a periphery using three or more probes coupled to the periphery. The three or more impedance measurements are made at a first frequency. Three or more additional impedance measurements of the object are made using the three or more probes. The three or more additional impedance measurements are made at a second frequency different from the first frequency. An impedance of the object at a point within the periphery is estimated based on the impedance measurements and the additional impedance measurements.
Full Text Available
Image portion identification methods, image parsing methods, image parsing systems, and articles of manufacture

Patent Lassahn, Gordon D.; Lancaster, Gregory D.; Apel, William A.; ...

Image portion identification methods, image parsing methods, image parsing systems, and articles of manufacture are described. According to one embodiment, an image portion identification method includes accessing data regarding an image depicting a plurality of biological substrates corresponding to at least one biological sample and indicating presence of at least one biological indicator within the biological sample and, using processing circuitry, automatically identifying a portion of the image depicting one of the biological substrates but not others of the biological substrates.
Full Text Available
Communications device identification methods, communications methods, wireless communications readers, wireless communications systems, and articles of manufacture

Patent Steele, Kerry D [Kennewick, WA]; Anderson, Gordon A [Benton City, WA]; Gilbert, Ronald W [Morgan Hill, CA]

Communications device identification methods, communications methods, wireless communications readers, wireless communications systems, and articles of manufacture are described. In one aspect, a communications device identification method includes providing identification information regarding a group of wireless identification devices within a wireless communications range of a reader, using the provided identification information, selecting one of a plurality of different search procedures for identifying unidentified ones of the wireless identification devices within the wireless communications range, and identifying at least some of the unidentified ones of the wireless identification devices using the selected one of the search procedures.
Full Text Available

Similar Records

Title: Computer-implemented security evaluation methods, security evaluation systems, and articles of manufacture

Abstract

Citation Formats

Modeling Modern Network Attacks and Countermeasures Using Attack Graphs conference, December 2009

Cyber/physical security vulnerability assessment integration conference, February 2013

Quantitative assessment of cyber security risk using bayesian network-based model conference, April 2009

Modeling Modern Network Attacks and Countermeasures Using Attack Graphs
conference, December 2009

Cyber/physical security vulnerability assessment integration
conference, February 2013

Quantitative assessment of cyber security risk using bayesian network-based model
conference, April 2009