This paper presents an unifying graph-based model for representing the infrastructure, behavior and missions of an enterprise. We describe how the model can be used to achieve resiliency against a wide class of failures and attacks. We introduce an algorithm for recommending resilience establishing actions based on dynamic updates to the models. Without loss of generality, we show the effectiveness of the algorithm for preserving latency based quality of service (QoS). Our models and the recommendation algorithms are implemented in a software framework that we seek to release as an open source framework for simulating resilient cyber systems.
Revised: May 24, 2016 |
Published: September 1, 2015
Citation
Choudhury S., L.R. Rodriguez, D.S. Curtis, K.J. Oler, P.L. Nordquist, P. Chen, and I. Ray. 2015.Action Recommendation for Cyber Resilience. In Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense (SafeConfig 2015), October 12-16, 2015, Denver, Colorado, 3-8. New York, New York:ACM.PNNL-SA-111899.doi:10.1145/2809826.2809837