skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Framework and methodology for supply chain lifecycle analytics

Patent ·
OSTI ID:1455194
; ; ; ; ;

The various technologies presented herein relate to pertaining to identifying and mitigating risks and attacks on a supply chain. A computer-implemented representation of a supply chain is generated comprising nodes (locations) and edges (objects, information). Risk to attack and different attack vectors can be defined for the various nodes and edges, and further, based upon the risks and attacks, (difficulty, consequence) pairs can be determined. One or more mitigations can be generated to increase a difficulty of attack and/or reduce consequence of an attack. The one or more mitigations can be constrained, e.g., by cost, time, etc., to facilitate determination of how feasible a respective mitigation is to implement with regard to finances available, duration to implement, etc. A context-free grammar can be utilized to identify one or more attacks in the supply chain. Further, the risks can undergo a ranking to enable mitigation priority to be determined.

Research Organization:
Sandia National Laboratories (SNL), Albuquerque, NM, and Livermore, CA (United States)
Sponsoring Organization:
USDOE
DOE Contract Number:
AC04-94AL85000
Assignee:
National Technology & Engineering Solutions of Sandia, LLC (Albuquerque, NM)
Patent Number(s):
9,992,219
Application Number:
14/940,005
OSTI ID:
1455194
Resource Relation:
Patent File Date: 2015 Nov 12
Country of Publication:
United States
Language:
English

References (22)

Network attack modeling, analysis, and response patent March 2011
Supply-chain management system patent August 2011
Method for evaluating a network patent September 2012
Enterprise information security management software for prediction modeling with interactive graphs patent August 2013
Methods for supply chain management incorporating uncertainty patent December 2013
Graphical models for cyber security analysis in enterprise networks patent November 2014
Availability risk assessment, resource simulation patent April 2017
System and method for risk detection and analysis in a computer network patent-application September 2005
Threats and Countermeasures Schema patent-application August 2007
Tactical And Strategic Attack Detection And Prediction patent-application September 2007
Event Detection Method and Device patent-application February 2008
System and apparatus for enterprise resilience patent-application June 2008
Method and apparatus for a processing risk assessment and operational oversight framework patent-application June 2008
Value-Adaptive Security Threat Modeling and Vulnerability Ranking patent-application March 2009
Risk Profiling for Enterprise Risk Management patent-application September 2009
Risk assessment forecasting in a supply chain patent-application October 2009
System and Method for Supply Chain Data Mining and Analysis patent-application April 2010
Critically/vulnerability/risk logic analysis methodology for business enterprise and cyber security patent-application June 2010
System and Method for Infrastructure Risk Assessment and/or Mitigation patent-application March 2011
Risk Assessment and Management patent-application August 2013
Dashboards for Displaying Threat Insight Information patent-application December 2013
Method and System for Collecting Supply Chain Performance Information patent-application January 2014

Similar Records

Related Subjects

97 MATHEMATICS AND COMPUTING