M. Dacier, Y. Deswarte and M. Kaniche, Quantitative Assessment of Operational Security: Models and Tools, Technical Report, LAAS Report 96493, May 1996.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....TM, ML and SP, we need to specify the mathematical model that is used to evaluate the mean effort for an attacker to reach the target. Our investigations led us to choose a Markovian model which satisfies some intuitive Ortalo, Deswarte, Ka niche 6 properties regarding security evolution (see [1, 7] for further details) The Markov model is based on the assumption that the probability to succeed in a given elementary attack before an amount of effort e is spent is described by an exponential distribution given by: P(e) 1 exp( le) where l is the rate assigned to the attack. Practical ....

M. Dacier, Y. Deswarte and M. Kaâniche, Quantitative Assessment of Operational Security: Models and Tools, Technical Report, LAAS Report 96493, May 1996. (Extended version of [1].)

....it is more important to know if the security of a given system is improving or decaying than to compare the security of independent systems, with different objectives, applications, users, environments, etc. A theoretical framework has been developed at LAAS to identify and compute such measures [Dacier, Deswarte et al. 1996a, Dacier 1994] This framework is based on: 1) a theoretical model, the privilege graph, exhibiting the system vulnerabilities, 2) a definition of the security objectives, 3) a mathematical model based on Markov chains to compute the security measures. To demonstrate the practical feasibility of ....

....corresponding to assumptions TM, ML and SP, we need to specify the mathematical model that is used to evaluate the mean effort for an attacker to reach the target. Our investigations led us to choose a Markovian model which satisfies some intuitive properties regarding security evolution (see [Dacier, Deswarte et al. 1996a, Dacier, Deswarte et al. 1996b] for further details) The Markov model is based on the assumption that the probability to succeed in a given elementary attack before an amount of effort e is spent is described by an exponential distribution given by: P(e) 1 exp( le) where l is the rate ....

[Article contains additional citation context not shown here]

M. Dacier, Y. Deswarte and M. Kaâniche, Quantitative Assessment of Operational Security: Models and Tools, Technical Report, LAAS Report 96493, May 1996. (Extended version of [Dacier, Deswarte et al. 1996a].)

No context found.

M. Dacier, Y. Deswarte and M. Kaniche, Quantitative Assessment of Operational Security: Models and Tools, Technical Report, LAAS Report 96493, May 1996.

No context found.

M. Dacier, Y. Deswarte, and M. Kaaniche. Quantitative assessment of operational security: Models and tools. Technical Report 96493, LAAS, May 1996.

No context found.

M. Dacier, Y. Deswarte and M. Kaniche, Quantitative Assessment of Operational Security: Models and Tools, Technical Report, LAAS Report 96493, May 1996.

No context found.

M. Dacier, Y. Deswarte, and M. Kaaniche, Quantitative Assessment of Operational Security: Models and Tools, LAAS Research Report 96493, May 1996.

No context found.

Dacier, M., Deswarte, Y., and Kaniche, M. (1996). Quantitative Assessment of Operational Security: Models and Tools. Technical Report 96493, LAAS.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC