May 10, 2013
Lecture today on cybersecurity modeling language
The computing and information sciences seminar series will present "Cyber Security Modeling Language, or CySeMoL," from 12:30-1:30 p.m. today at 126 Nichols Hall. Hannes Holm, Royal Institute of Technology in Stockholm, Sweden, will present the lecture.
Cyber Security Modeling Language is a modeling language for enterprise-level system architectures coupled to a probabilistic inference engine. If the computer systems of an enterprise are modeled with CySeMoL, this inference engine can assess the probability that attacks on the systems will succeed. The theory used for the attack-probability calculations in CySeMoL is a compilation of research results on a number of security domains and covers a range of attacks and countermeasures. The theory has previously been validated on a component level. In this paper, the theory is also validated on a system level. A test indicates that the reasonableness and correctness of CySeMoL assessments compare with the reasonableness and correctness of the assessments of a security professional. CySeMoLís utility has been tested in case studies.
Holm is a doctoral student at the department of Industrial Information and Control Systems at the Royal Institute of Technology in Stockholm, Sweden. He received his master's degree in management engineering at Luleå University of Technology. His research interests include enterprise architecture and cyber security regarding critical infrastructure control systems.