%0 Conference Proceedings
%T Decentralized Semantic Threat Graphs
%+ Cork Constraint Computation Centre (4C UCC)
%A Foley, Simon, N.
%A Fitzgerald, William, M.
%Z Part 6: Data Management
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 26th Conference on Data and Applications Security and Privacy (DBSec)
%C Paris, France
%Y Nora Cuppens-Boulahia
%Y Frédéric Cuppens
%Y Joaquin Garcia-Alfaro
%I Springer
%3 Data and Applications Security and Privacy XXVI
%V LNCS-7371
%P 177-192
%8 2012-07-11
%D 2012
%R 10.1007/978-3-642-31540-4_14
%K Decentralized Threat Management
%K Security Configuration
%Z Computer Science [cs]Conference papers
%X Threat knowledge-bases such as those maintained by MITRE and NIST provide a basis with which to mitigate known threats to an enterprise. These centralised knowledge-bases assume a global and uniform level of trust for all threat and countermeasure knowledge. However, in practice these knowledge-bases are composed of threats and countermeasures that originate from a number of threat providers, for example Bugtraq. As a consequence, threat knowledge consumers may only wish to trust knowledge about threats and countermeasures that have been provided by a particular provider or set of providers. In this paper, a trust management approach is taken with respect to threat knowledge-bases. This provides a basis with which to decentralize and delegate trust for knowledge about threats and their mitigation to one or more providers. Threat knowledge-bases are encoded as Semantic Threat Graphs. An ontology-based delegation scheme is proposed to manage trust across a model of distributed Semantic Threat Graph knowledge-bases.
%G English
%Z TC 11
%Z WG 11.3
%2 https://inria.hal.science/hal-01534768/document
%2 https://inria.hal.science/hal-01534768/file/978-3-642-31540-4_14_Chapter.pdf
%L hal-01534768
%U https://inria.hal.science/hal-01534768
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC11
%~ IFIP-WG11-3
%~ IFIP-DBSEC
%~ IFIP-LNCS-7371