Abstract
Deception-based defense relies on deliberated actions to manipulate the attackers' perception of a system. It requires careful planning and application of multiple techniques to be effective. Therefore, deceptive strategies should be studied in isolation from the traditional security mechanisms. To support this goal, we develop DML, a visual language for deception modeling, offering three complementary views of deception: requirements model, deception tactics feature model, and deception strategy organizational. DML integrates goal-oriented requirements models and threat models to compose a comprehensive model considering the influences of developing deceptive mechanisms and the associated risks. The feasibility of DML is demonstrated via a tool prototype and a set of illustrative scenarios for a web system.
| Original language | English |
|---|---|
| Title of host publication | Proceedings - 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018 |
| Editors | Caitlin Kelleher, Gregor Engels, Joao Paulo Fernandes, Jacome Cunha, Jorge Mendes |
| Publisher | IEEE Computer Society |
| Pages | 205-209 |
| Number of pages | 5 |
| ISBN (Electronic) | 978-153864235-1 |
| DOIs | |
| Publication status | Published - 23 Oct 2018 |
| Event | 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018 - Lisbon, Portugal Duration: 1 Oct 2018 → 4 Oct 2018 |
Publication series
| Name | Proceedings - IEEE Symposium on Visual Languages and Human-Centric Computing (VL/HCC) |
|---|---|
| Publisher | IEEE Computer Society |
| Volume | 2018-October |
| ISSN (Print) | 1943-6092 |
Conference
| Conference | 2018 IEEE Symposium on Visual Languages and Human-Centric Computing, VL/HCC 2018 |
|---|---|
| Country/Territory | Portugal |
| City | Lisbon |
| Period | 1/10/18 → 4/10/18 |
Keywords
- Network security
- Intrusion detection
- Computer crime
