Generating Targeted Attack Scenarios against Availability for Critical Infrastructures

Generating Targeted Attack Scenarios against Availability for Critical Infrastructures

연구 분야: Infrastructure

학회: 2021 14th CMI International Conference - Critical ICT Infrastructures and Platforms (CMI)

Attack and defense are both essential to information security. Focusing on critical infrastructures, we aim to generate targeted attack scenarios against availability for attack, and propose corresponding monitoring and detection deployment for defense. We start with producing an asset inventory automatically with an open-source network exploration and security auditing tool, and assess vulnerabilities for each asset with open-source intelligence. With vulnerability metrics, we can construct more exploitable attack scenarios with the most impact on availability. With the adversary techniques derived from real-world incidents and attacks, we can construct more realistic attack scenarios integrated with industrial control systems. With current security advisories, we can construct more targeted attack scenarios against specific critical infrastructure sectors. As a result, we can propose proactive monitoring and timely detection deployment across all levels of the PURDUE model in order of the sequences of kill chain phases for defense.