Abstract
The security of SCADA (Supervisory Control and Data Acquisition) and realtime systems represents a significant challenge in today's world. The research in cyber-attack activities have gained immense emphasis. One of such research efforts is modeling of cyber-attacks. In this context, several modeling approaches have been developed, such as approaches based on attack trees (AT). In this paper, we propose Colored Petri Net (SGN) modeling approach by extending the attack trees with new modeling constructs and analysis approaches. SGN based attack model is flexible enough to model Internet intrusion, including the static and dynamic features of the intrusion. The process and rules of building SGN based attack model from AT are also presented. In order to evaluate the risk of intrusion, some cost elements are added to SGN based attack modeling. We show how attack trees can be converted and analyzed in SGN. Finally, we provide a case study that illustrates the SGN approach.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
