Information flow integrity measurement  method using integrity threat tree

WU Qixuan; MA Jianfeng, SUN Cong

doi:10.11959/j.issn.2096-109x.2019016

网络与信息安全学报 (Apr 2019)

Information flow integrity measurement method using integrity threat tree

WU Qixuan,
MA Jianfeng, SUN Cong

Affiliations

WU Qixuan: School of Cyber Engineering, Xidian University, Xi’an 710071,China ; Tencent Technology (Shenzhen) Company Limited, Shenzhen 518057, China
MA Jianfeng, SUN Cong: School of Cyber Engineering, Xidian University, Xi’an 710071,China

DOI: https://doi.org/10.11959/j.issn.2096-109x.2019016
Journal volume & issue: Vol. 5, no. 2
pp. 50 – 57

Abstract

Read online

In order to avert the drawback of traditional information flow integrity analysis on ignoring the specific system architecture and associated attack events, an integrity threat tree to quantify the integrity of the system information flow, and the conditional trigger gate to model the associated attack events were proposed. The attack cost was used to quantify the degree of difficulty on attacking each channel. According to the architecture-related integrity threat tree, the minimum attack cost and corresponding target channel set required to achieve the attack target were solved by using the satisfiability modulo theories. The practicality of our approach was demonstrated by the modeling and analysis of the actual flight control system models, and the influence of the conditional trigger gate parameters on the system integrity was discussed.

Published in 网络与信息安全学报

ISSN: 2096-109X (Print)
Publisher: POSTS&TELECOM PRESS Co., LTD
Country of publisher: China
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: http://www.infocomm-journal.com/cjnis/CN/2096-109X/home.shtml

About the journal

Abstract

Keywords