Formalizing Threat Models for Virtualized Systems
File(s)threat_model_dbsec.pdf (962.97 KB)
Accepted version
Author(s)
Sgandurra, D
Karafili, E
Lupu, EC
Type
Conference Paper
Abstract
We propose a framework, called FATHoM (FormAlizing THreat Models), to define threat models for virtualized systems. For each component of a virtualized system, we specify a set of security properties that defines its control responsibility, its vulnerability and protection states. Relations are used to represent how assumptions made about a component’s security state restrict the assumptions that can be made on the other components. FATHoM includes a set of rules to compute the derived security states from the assumptions and the components’ relations. A further set of relations and rules is used to define how to protect the derived vulnerable components. The resulting system is then analysed, among others, for consistency of the threat model. We have developed a tool that implements FATHoM, and have validated it with use-cases adapted from the literature.
Date Issued
2016-07-18
Date Acceptance
2016-04-22
Citation
Lecture Notes in Computer Science, 2016, 9766, pp.251-267
ISBN
978-3-319-41482-9
ISSN
0302-9743
Publisher
Springer International Publishing
Start Page
251
End Page
267
Journal / Book Title
Lecture Notes in Computer Science
Volume
9766
Copyright Statement
© Springer Verlag 2016. The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-319-41483-6_18
Sponsor
Commission of the European Communities
Engineering & Physical Science Research Council (EPSRC)
Grant Number
FP7 - 610853
EP/L022729/1
Source
Data and Applications Security and Privacy (DBSec 2016)
Subjects
Artificial Intelligence & Image Processing
Information And Computing Sciences
Publication Status
Published
Start Date
2016-07-18
Finish Date
2016-07-21
Coverage Spatial
Trento, Italy