Visual modeling of cyber deception

Cristiano de Faveri; Ana Moreira

doi:10.1109/VLHCC.2018.8506515

Visual modeling of cyber deception

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Deception-based defense relies on deliberated actions to manipulate the attackers' perception of a system. It requires careful planning and application of multiple techniques to be effective. Therefore, deceptive strategies should be studied in isolation from the traditional security mechanisms. To support this goal, we develop DML, a visual language for deception modeling, offering three complementary views of deception: requirements model, deception tactics feature model, and deception strategy organizational. DML integrates goal-oriented requirements models and threat models to compose a comprehensive model considering the influences of developing deceptive mechanisms and the associated risks. The feasibility of DML is demonstrated via a tool prototype and a set of illustrative scenarios for a web system.

Original language	English
Title of host publication	Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018
Editors	Caitlin Kelleher, Gregor Engels, Joao Paulo Fernandes, Jacome Cunha, Jorge Mendes
Publisher	IEEE Computer Society
Pages	205-209
Number of pages	5
ISBN (Electronic)	978-153864235-1
DOIs	https://doi.org/10.1109/VLHCC.2018.8506515
Publication status	Published - 23 Oct 2018
Event	2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018 - Lisbon, Portugal Duration: 1 Oct 2018 → 4 Oct 2018

Publication series

Name	Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC)
Publisher	IEEE Computer Society
Volume	2018-October
ISSN (Print)	1943-6092

Conference

Conference	2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018
Country	Portugal
City	Lisbon
Period	1/10/18 → 4/10/18

Keywords

Network security
Intrusion detection
Computer crime

Access to Document

10.1109/VLHCC.2018.8506515Licence: Unspecified

Link to publication in Scopus

Fingerprint Dive into the research topics of 'Visual modeling of cyber deception'. Together they form a unique fingerprint.

Cite this

de Faveri, C., & Moreira, A. (2018). Visual modeling of cyber deception. In C. Kelleher, G. Engels, J. P. Fernandes, J. Cunha, & J. Mendes (Eds.), Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018 (pp. 205-209). [8506515] (Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC); Vol. 2018-October). IEEE Computer Society. https://doi.org/10.1109/VLHCC.2018.8506515

de Faveri, Cristiano ; Moreira, Ana. / Visual modeling of cyber deception. Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018. editor / Caitlin Kelleher ; Gregor Engels ; Joao Paulo Fernandes ; Jacome Cunha ; Jorge Mendes. IEEE Computer Society, 2018. pp. 205-209 (Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC)).

@inproceedings{45c8b0d21d144c1f915277b976c25444,

title = "Visual modeling of cyber deception",

abstract = "Deception-based defense relies on deliberated actions to manipulate the attackers' perception of a system. It requires careful planning and application of multiple techniques to be effective. Therefore, deceptive strategies should be studied in isolation from the traditional security mechanisms. To support this goal, we develop DML, a visual language for deception modeling, offering three complementary views of deception: requirements model, deception tactics feature model, and deception strategy organizational. DML integrates goal-oriented requirements models and threat models to compose a comprehensive model considering the influences of developing deceptive mechanisms and the associated risks. The feasibility of DML is demonstrated via a tool prototype and a set of illustrative scenarios for a web system.",

keywords = "Network security, Intrusion detection, Computer crime",

author = "{de Faveri}, Cristiano and Ana Moreira",

note = "Sem PDF conforme despacho. info:eu-repo/grantAgreement/FCT/5876/147279/PT# ; 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018 ; Conference date: 01-10-2018 Through 04-10-2018",

year = "2018",

month = oct,

day = "23",

doi = "10.1109/VLHCC.2018.8506515",

language = "English",

series = "Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC)",

publisher = "IEEE Computer Society",

pages = "205--209",

editor = "Caitlin Kelleher and Gregor Engels and Fernandes, {Joao Paulo} and Jacome Cunha and Jorge Mendes",

booktitle = "Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018",

}

de Faveri, C & Moreira, A 2018, Visual modeling of cyber deception. in C Kelleher, G Engels, JP Fernandes, J Cunha & J Mendes (eds), Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018., 8506515, Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC), vol. 2018-October, IEEE Computer Society, pp. 205-209, 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018, Lisbon, Portugal, 1/10/18. https://doi.org/10.1109/VLHCC.2018.8506515

Visual modeling of cyber deception. / de Faveri, Cristiano ; Moreira, Ana.

Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018. ed. / Caitlin Kelleher; Gregor Engels; Joao Paulo Fernandes; Jacome Cunha; Jorge Mendes. IEEE Computer Society, 2018. p. 205-209 8506515 (Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC); Vol. 2018-October).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Visual modeling of cyber deception

AU - de Faveri, Cristiano

AU - Moreira, Ana

N1 - Sem PDF conforme despacho. info:eu-repo/grantAgreement/FCT/5876/147279/PT#

PY - 2018/10/23

Y1 - 2018/10/23

N2 - Deception-based defense relies on deliberated actions to manipulate the attackers' perception of a system. It requires careful planning and application of multiple techniques to be effective. Therefore, deceptive strategies should be studied in isolation from the traditional security mechanisms. To support this goal, we develop DML, a visual language for deception modeling, offering three complementary views of deception: requirements model, deception tactics feature model, and deception strategy organizational. DML integrates goal-oriented requirements models and threat models to compose a comprehensive model considering the influences of developing deceptive mechanisms and the associated risks. The feasibility of DML is demonstrated via a tool prototype and a set of illustrative scenarios for a web system.

AB - Deception-based defense relies on deliberated actions to manipulate the attackers' perception of a system. It requires careful planning and application of multiple techniques to be effective. Therefore, deceptive strategies should be studied in isolation from the traditional security mechanisms. To support this goal, we develop DML, a visual language for deception modeling, offering three complementary views of deception: requirements model, deception tactics feature model, and deception strategy organizational. DML integrates goal-oriented requirements models and threat models to compose a comprehensive model considering the influences of developing deceptive mechanisms and the associated risks. The feasibility of DML is demonstrated via a tool prototype and a set of illustrative scenarios for a web system.

KW - Network security

KW - Intrusion detection

KW - Computer crime

UR - http://www.scopus.com/inward/record.url?scp=85056883734&partnerID=8YFLogxK

U2 - 10.1109/VLHCC.2018.8506515

DO - 10.1109/VLHCC.2018.8506515

M3 - Conference contribution

AN - SCOPUS:85056883734

T3 - Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC)

SP - 205

EP - 209

BT - Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018

A2 - Kelleher, Caitlin

A2 - Engels, Gregor

A2 - Fernandes, Joao Paulo

A2 - Cunha, Jacome

A2 - Mendes, Jorge

PB - IEEE Computer Society

T2 - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018

Y2 - 1 October 2018 through 4 October 2018

ER -

de Faveri C , Moreira A. Visual modeling of cyber deception. In Kelleher C, Engels G, Fernandes JP, Cunha J, Mendes J, editors, Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018. IEEE Computer Society. 2018. p. 205-209. 8506515. (Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC)). https://doi.org/10.1109/VLHCC.2018.8506515