IDEAS home Printed from https://ideas.repec.org/a/sae/joudef/v15y2018i2p161-180.html
   My bibliography  Save this article

Comparative analysis and patch optimization using the cyber security analytics framework

Author

Listed:
  • Subil Abraham
  • Suku Nair

Abstract

Dependable metrics are one of the critical elements of an organization’s information security program and are crucial for its long-term success. Current research in the area of enterprise security metrics provides limited insight on understanding the impact that attacks have on the overall security goals of an enterprise as well as predicting the future security state of the network. In this paper we present a novel security analytics framework that takes into account both the inter-relationship between different vulnerabilities and the temporal features that evolve over time, such as the vulnerability discovery rate and the lifecycle events. We then formally define a non-homogenous stochastic model that incorporates time dependent covariates, namely the vulnerability age and the vulnerability discovery rate, to help visualize the future security state of the network leading to actionable knowledge and insight. We will perform a comparative analysis and also describe the patch optimization methodology by applying this model on a sample network to demonstrate the practicality of our approach.

Suggested Citation

  • Subil Abraham & Suku Nair, 2018. "Comparative analysis and patch optimization using the cyber security analytics framework," The Journal of Defense Modeling and Simulation, , vol. 15(2), pages 161-180, April.
    • Handle: RePEc:sae:joudef:v:15:y:2018:i:2:p:161-180
    DOI: 10.1177/1548512917705743
    as

    Download full text from publisher

    File URL: https://journals.sagepub.com/doi/10.1177/1548512917705743
    Download Restriction: no
    File URL: https://libkey.io/10.1177/1548512917705743?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:sae:joudef:v:15:y:2018:i:2:p:161-180. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: SAGE Publications (email available below). General contact details of provider: .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.