论文信息 - Implementation of a Generic ICT Risk Model using Graph Databases

Implementation of a Generic ICT Risk Model using Graph Databases

Advanced Persistent Threats (APTs) impose an increasing threat on today’s information and communication technology (ICT) infrastructure. These highly-sophisticated attacks overcome the typical perimeter protection mechanisms of an organization and generate a large amount of damage. Based on a practical use case of a real-life APT lifecycle, this paper shows how APTs can be tackled using a generic ICT risk analysis framework. Further, it provides details for the implementation of this risk analysis framework using graph databases. The major benefits of this graph database approach, i.e., the simple representation of the interconnected risk model as a graph and the availability of efficient traversals over complex sections of the graph, are illustrated giving several examples. Keywordsrisk management; APT; ICT security; graph databases; interconnected risk model.

[1] Florian Skopik,et al. Combating advanced persistent threats: From network event correlation to incident detection , 2015, Comput. Secur..

[2] Jong Hyuk Park,et al. MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats , 2014, Symmetry.

[3] Isaca. COBIT 5: Enabling Processes , 2012 .

[4] William A. Wulf,et al. TOWARDS A FRAMEWORK FOR SECURITY MEASUREMENT , 1997 .

[5] Colin Tankard,et al. Advanced Persistent threats and how to monitor and deter them , 2011, Netw. Secur..

[6] Kainan Chen. No place to hide: Edward Snowden, the NSA, and the U.S. surveillance state , 2017 .

[7] Stefan Schiebeck. An approach to continuous information security risk assessment focused on security measurements , 2014 .

[8] Bundesministerium des Innern. Polizeiliche Kriminalstatistik 2013 , 2014 .

[9] Thomas Schaberreiter,et al. A Bayesian network based on-line risk prediction framework for interdependent critical infrastructures , 2013 .

[10] Lars Juhl Jensen,et al. Are graph databases ready for bioinformatics? , 2013, Bioinform..

[11] Alan Mycroft,et al. Source-code queries with graph databases - with application to programming language usage and evolution , 2015, Sci. Comput. Program..

[12] Arun Prakash Agrawal,et al. Comparative analysis of Relational and Graph databases , 2013 .