Imperial College London

Professor Christopher Hankin Director, Institute for Security Science and Technology

Faculty of EngineeringInstitute for Security Science & Technology

Co-Director of Institute for Security Science & Technology
 
 
 
//

Contact

 

+44 (0)20 7594 7619c.hankin Website

 
 
//

Assistant

 

Ms Denise McGurk +44 (0)20 7594 8864

 
//

Location

 

Sherfield BuildingSouth Kensington Campus

//

Summary

 

Publications

Citation

BibTex format

@inproceedings{Li:2017:10.1007/978-3-319-71368-7_11,
author = {Li, T and Hankin, C},
doi = {10.1007/978-3-319-71368-7_11},
pages = {123--136},
title = {Effective defence against zero-day exploits using bayesian networks},
url = {http://dx.doi.org/10.1007/978-3-319-71368-7_11},
year = {2017}
}

RIS format (EndNote, RefMan)

TY  - CPAPER
AB - © 2017, Springer International Publishing AG. Industrial Control Systems (ICS) play a crucial role in controlling industrial processes. Unlike conventional IT systems or networks, cyber attacks against ICS can cause destructive physical damage. Zero-day exploits (i.e. unknown exploits) have demonstrated their essential contributions to causing such damage by Stuxnet. In this work, we investigate the possibility of improving the tolerance of a system against zero-day attacks by defending against known weaknesses of the system. We first propose a metric to measure the system tolerance against zero-day attacks, which is the minimum effort required by zero-day exploits to compromise a system. We then apply this metric to evaluate different defensive plans to decide the most effective one in maximising the system tolerance against zero-day attacks. A case study about ICS security management is demonstrated in this paper.
AU - Li,T
AU - Hankin,C
DO - 10.1007/978-3-319-71368-7_11
EP - 136
PY - 2017///
SN - 0302-9743
SP - 123
TI - Effective defence against zero-day exploits using bayesian networks
UR - http://dx.doi.org/10.1007/978-3-319-71368-7_11
UR - http://hdl.handle.net/10044/1/39008
ER -