Imperial College London

Professor Christopher Hankin Director, Institute for Security Science and Technology

Faculty of EngineeringInstitute for Security Science & Technology

Co-Director of Institute for Security Science & Technology



+44 (0)20 7594 7619c.hankin Website




Ms Denise McGurk +44 (0)20 7594 8864




Sherfield BuildingSouth Kensington Campus






BibTex format

author = {Li, T and Hankin, C},
doi = {10.1007/978-3-319-71368-7_11},
pages = {123--136},
title = {Effective defence against zero-day exploits using bayesian networks},
url = {},
year = {2017}

RIS format (EndNote, RefMan)

AB - © 2017, Springer International Publishing AG. Industrial Control Systems (ICS) play a crucial role in controlling industrial processes. Unlike conventional IT systems or networks, cyber attacks against ICS can cause destructive physical damage. Zero-day exploits (i.e. unknown exploits) have demonstrated their essential contributions to causing such damage by Stuxnet. In this work, we investigate the possibility of improving the tolerance of a system against zero-day attacks by defending against known weaknesses of the system. We first propose a metric to measure the system tolerance against zero-day attacks, which is the minimum effort required by zero-day exploits to compromise a system. We then apply this metric to evaluate different defensive plans to decide the most effective one in maximising the system tolerance against zero-day attacks. A case study about ICS security management is demonstrated in this paper.
AU - Li,T
AU - Hankin,C
DO - 10.1007/978-3-319-71368-7_11
EP - 136
PY - 2017///
SN - 0302-9743
SP - 123
TI - Effective defence against zero-day exploits using bayesian networks
UR -
UR -
ER -