The structure of rooted weighted trees modeling layered cyber-security systems

The structure of rooted weighted trees modeling layered cyber-security systems

In this paper we consider the structure and topology of a layered-security model in which the containers and their nestings are given in the form of a rooted tree T. A cyber-security model is an ordered three-tuple M = (T;C; P) where C and P are multisets of penetration costs for the containers and...

Full description

Saved in:
Bibliographic Details
Main Authors: Geir Agnarsson, Raymond Greenlaw, Sanpawat Kantabutra
Format: Journal
Published: 2018
Subjects:
Computer Science
Decision Sciences
Engineering
Mathematics
Online Access:https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85018819781&origin=inward
http://cmuir.cmu.ac.th/jspui/handle/6653943832/55611
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Chiang Mai University
id th-cmuir.6653943832-55611
record_format dspace
spelling th-cmuir.6653943832-556112018-09-05T03:07:16Z The structure of rooted weighted trees modeling layered cyber-security systems Geir Agnarsson Raymond Greenlaw Sanpawat Kantabutra Computer Science Decision Sciences Engineering Mathematics In this paper we consider the structure and topology of a layered-security model in which the containers and their nestings are given in the form of a rooted tree T. A cyber-security model is an ordered three-tuple M = (T;C; P) where C and P are multisets of penetration costs for the containers and targetacquisition values for the prizes that are located within the containers, respectively, both of the same cardinality as the set of the non-root vertices of T. The problem that we study is to assign the penetration costs to the edges and the target-acquisition values to the vertices of the tree T in such a way that minimizes the total prize that an attacker can acquire given a limited budget. The attacker breaks into containers starting at the root of T and once a vertex has been broken into, its children can be broken into by paying the associated penetration costs. The attacker must deduct the corresponding penetration cost from the budget, as each new container is broken into. For a given assignment of costs and target values we obtain a security system. We show that in general it is not possible to develop an optimal security system for a given cyber-security model M. We define P- and C-models where the penetration costs and prizes, respectively, all have unit value. We show that if T is a rooted tree such that any P- or C-model M = (T;C; P) has an optimal security system, then T is one of the following types: (i) a rooted path, (ii) a rooted star, (iii) a rooted 3-caterpillar, or (iv) a rooted 4-spider. Conversely, if T is one of these four types of trees, then we show that any P- or C-model M = (T;C; P) does have an optimal security system. Finally, we study a duality between P- and C-models that allows us to translate results for P-models into corresponding results for C-models and vice versa. The results obtained give us some mathematical insights into how layered-security defenses should be organized. 2018-09-05T02:58:27Z 2018-09-05T02:58:27Z 2016-01-01 Journal 0324721X 2-s2.0-85018819781 10.14232/actacyb.22.4.2016.2 https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85018819781&origin=inward http://cmuir.cmu.ac.th/jspui/handle/6653943832/55611
institution Chiang Mai University
building Chiang Mai University Library
country Thailand
collection CMU Intellectual Repository
topic Computer Science
Decision Sciences
Engineering
Mathematics
spellingShingle Computer Science
Decision Sciences
Engineering
Mathematics
Geir Agnarsson
Raymond Greenlaw
Sanpawat Kantabutra
The structure of rooted weighted trees modeling layered cyber-security systems
description In this paper we consider the structure and topology of a layered-security model in which the containers and their nestings are given in the form of a rooted tree T. A cyber-security model is an ordered three-tuple M = (T;C; P) where C and P are multisets of penetration costs for the containers and targetacquisition values for the prizes that are located within the containers, respectively, both of the same cardinality as the set of the non-root vertices of T. The problem that we study is to assign the penetration costs to the edges and the target-acquisition values to the vertices of the tree T in such a way that minimizes the total prize that an attacker can acquire given a limited budget. The attacker breaks into containers starting at the root of T and once a vertex has been broken into, its children can be broken into by paying the associated penetration costs. The attacker must deduct the corresponding penetration cost from the budget, as each new container is broken into. For a given assignment of costs and target values we obtain a security system. We show that in general it is not possible to develop an optimal security system for a given cyber-security model M. We define P- and C-models where the penetration costs and prizes, respectively, all have unit value. We show that if T is a rooted tree such that any P- or C-model M = (T;C; P) has an optimal security system, then T is one of the following types: (i) a rooted path, (ii) a rooted star, (iii) a rooted 3-caterpillar, or (iv) a rooted 4-spider. Conversely, if T is one of these four types of trees, then we show that any P- or C-model M = (T;C; P) does have an optimal security system. Finally, we study a duality between P- and C-models that allows us to translate results for P-models into corresponding results for C-models and vice versa. The results obtained give us some mathematical insights into how layered-security defenses should be organized.
format Journal
author Geir Agnarsson
Raymond Greenlaw
Sanpawat Kantabutra
author_facet Geir Agnarsson
Raymond Greenlaw
Sanpawat Kantabutra
author_sort Geir Agnarsson
title The structure of rooted weighted trees modeling layered cyber-security systems
title_short The structure of rooted weighted trees modeling layered cyber-security systems
title_full The structure of rooted weighted trees modeling layered cyber-security systems
title_fullStr The structure of rooted weighted trees modeling layered cyber-security systems
title_full_unstemmed The structure of rooted weighted trees modeling layered cyber-security systems
title_sort structure of rooted weighted trees modeling layered cyber-security systems
publishDate 2018
url https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85018819781&origin=inward
http://cmuir.cmu.ac.th/jspui/handle/6653943832/55611
_version_ 1681424538151157760

Similar Items