Skip to main content
SpringerLink
Log in

A Role Modeling Based Approach for Cyber Threat Analysis

  • Conference paper
  • First Online:
Book cover Model-Driven Engineering and Software Development (MODELSWARD 2019)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 1161))

  • 710 Accesses

Abstract

Using DSMLs, the domain experts can express their models in a language that is relevant to the problem area. However, it also adds the complexity of interoperability between these languages, specially for application areas that encompass multiple domains. One such application area, Cyber Threat Analysis (CTA), is at the intersection of various domains that can evolve independently: system modeling, attacker modeling and threat description. In this paper, we present an approach to address CTA interoperability issues based on role modeling. The proposed language provides a mechanism to define shared semantics between DSMLs relative to the CTA. The concept of a role is central to our approach, presented as Role4All framework. These roles allow us to federate different DSMLs to generate an attacker’s viewpoint. Our approach is illustrated using a case study on the development of an attacker’s viewpoint based on the federation of multiple domain models. Interoperability between the domain models is crucial to apply dedicated algorithms and interpretations on the attacker’s viewpoint. We used this attacker viewpoint to simulate attacks on a system for security analysis.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    PimCa specification is confidential. However we will present some details about PimCa DSML and its metamodel in Sect. 5.1.

  2. 2.

    We will explain the link between these applications and vulnerabilities in the next section.

  3. 3.

    https://wpscan.org/.

  4. 4.

    The identification number corresponds to the US National Vulnerability Database.

  5. 5.

    https://nmap.org/.

References

  1. Basin, D., Doser, J., Lodderstedt, T.: Model driven security: from UML models to access control infrastructures. ACM Trans. Softw. Eng. Methodol. (TOSEM) 15(1), 39–91 (2006)

    Article  Google Scholar 

  2. Champeau, J., Leilde, V., Diallo, P.I.: Model federation in toolchains. In: MODELS Companion Proceedings (2013)

    Google Scholar 

  3. Combemale, B., Deantoni, J., Baudry, B., France, R.B., Jézéquel, J.-M., Gray, J.: Globalizing modeling languages. Computer 47(6), 68–71 (2014)

    Article  Google Scholar 

  4. Conti, M., Dargahi, T., Dehghantanha, A.: Cyber threat intelligence: challenges and opportunities. In: Dehghantanha, A., Conti, M., Dargahi, T. (eds.) Cyber Threat Intelligence. AIS, vol. 70, pp. 1–6. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-73951-9_1

    Chapter  Google Scholar 

  5. Dijkstra, E.W.: Guarded commands, nondeterminacy, and formal derivation of programs. In: Gries, D. (ed.) Programming Methodology. MCS, pp. 166–175. Springer, New York (1978). https://doi.org/10.1007/978-1-4612-6315-9_14

    Chapter  Google Scholar 

  6. Drouot, B., Champeau, J.: Model federation based on role modeling. In: Proceedings of the 7th International Conference on Model-Driven Engineering and Software Development, MODELSWARD 2019, Prague, Czech Republic, 20–22 February 2019, pp. 72–83 (2019)

    Google Scholar 

  7. Elahi, G., Yu, E., Zannone, N.: A vulnerability-centric requirements engineering framework: analyzing security attacks, countermeasures, and requirements based on vulnerabilities. Requir. Eng. 15(1), 41–62 (2010)

    Article  Google Scholar 

  8. Emerson, M., Sztipanovits, J.: Techniques for metamodel composition. In: OOPSLA-6th Workshop on Domain Specific Modeling, pp. 123–139 (2006)

    Google Scholar 

  9. Golra, F.R., Beugnard, A., Dagnat, F., Guerin, S., Guychard, C.: Addressing modularity for heterogeneous multi-model systems using model federation. In: Companion Proceedings 15th International Conference on Modularity, pp. 206–211. ACM (2016)

    Google Scholar 

  10. Gottlob, G., Schrefl, M., Röck, B.: Extending object-oriented systems with roles. ACM Trans. Inf. Syst. (TOIS) 14(3), 268–296 (1996)

    Article  Google Scholar 

  11. Hardebolle, C., Boulanger, F.: ModHel’X: a component-oriented approach to multi-formalism modeling. In: Giese, H. (ed.) MODELS 2007. LNCS, vol. 5002, pp. 247–258. Springer, Heidelberg (2008). https://doi.org/10.1007/978-3-540-69073-3_26

    Chapter  Google Scholar 

  12. Hemery, D.: PimCa: Définition du langage. Technical report, DGA Maitrise de l’Information, January 2015

    Google Scholar 

  13. Holik, F., Horalek, J., Marik, O., Neradova, S., Zitta, S.: Effective penetration testing with Metasploit framework and methodologies. In: 2014 IEEE 15th International Symposium on Computational Intelligence and Informatics (CINTI), pp. 237–242. IEEE, November 2014. https://doi.org/10.1109/CINTI.2014.7028682

  14. Hutchinson, J., Whittle, J., Rouncefield, M., Kristoffersen, S.: Empirical assessment of MDE in industry. In: Proceedings of the 33rd International Conference on Software Engineering, pp. 471–480. ACM (2011)

    Google Scholar 

  15. Ishida, T.: Q: a scenario description language for interactive agents. Computer 35(11), 42–47 (2002)

    Article  Google Scholar 

  16. ISO 14258:1998 - Industrial automation systems - Concepts and rules for enterprise models. Standard, International Organization for Standardization, Geneva, CH, August 1998

    Google Scholar 

  17. ISO/IEC 27000:2016 - Information technology - Security techniques - Information security management system - Overview and vocabulary. Standard, International Organization for Standardization, August 2016

    Google Scholar 

  18. Kühn, T., Leuthäuser, M., Götz, S., Seidl, C., Aßmann, U.: A metamodel family for role-based modeling and programming languages. In: Combemale, B., Pearce, D.J., Barais, O., Vinju, J.J. (eds.) SLE 2014. LNCS, vol. 8706, pp. 141–160. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-11245-9_8

    Chapter  Google Scholar 

  19. Mell, P., Scarfone, K., Romanosky, S.: Common vulnerability scoring system. IEEE Secur. Priv. 4(6), 85–89 (2006)

    Article  Google Scholar 

  20. Myagmar, S., Lee, A.J., Yurcik, W.: Threat modeling as a basis for security requirements. In: Symposium on Requirements Engineering for Information Security (SREIS), vol. 2005, pp. 1–8. Citeseer (2005)

    Google Scholar 

  21. Niemoller, J., Mokrushin, L., Vandikas, K., Avesand, S., Angelin, L.: Model federation and probabilistic analysis for advanced OSS and BSS. In: 2013 Seventh International Conference on Next Generation Mobile Apps, Services and Technologies (NGMAST), pp. 122–129. IEEE (2013)

    Google Scholar 

  22. Osis, J.: Model-Driven Domain Analysis and Software Development: Architectures and functions. IGI Global, Hershey (2010)

    Google Scholar 

  23. Pauli, J., Xu, D.: Threat-driven architectural design of secure information systems. In: Proceeding of First International Workshop on Protection by Adaptation, PBA 2005, Miami (2005)

    Google Scholar 

  24. Schneider, J.P., Champeau, J., Lagadec, L., Senn, E.: Role framework to support collaborative virtual prototyping of system of systems. In: 24th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE), pp. 144–149. IEEE (2015)

    Google Scholar 

  25. Schneider, J.P., Champeau, J., Teodorov, C., Senn, E., Lagadec, L.: A role language to interpret multi-formalism system of systems models. In: 9th Annual IEEE International Systems Conference (SysCon), pp. 200–205. IEEE (2015)

    Google Scholar 

  26. Seifert, M., Wende, C., Aßmann, U.: Anticipating unanticipated tool interoperability using role models. In: Proceedings of the First International Workshop on Model-Driven Interoperability, pp. 52–60. ACM (2010)

    Google Scholar 

  27. Shostack, A.: Threat Modeling: Designing for Security. Wiley, Hoboken (2014)

    Google Scholar 

  28. Steimann, F.: On the representation of roles in object-oriented and conceptual modelling. Data Knowl. Eng. 35(1), 83–106 (2000)

    Article  Google Scholar 

  29. Stevens, P.: A landscape of bidirectional model transformations. In: Lämmel, R., Visser, J., Saraiva, J. (eds.) GTTSE 2007. LNCS, vol. 5235, pp. 408–424. Springer, Heidelberg (2008). https://doi.org/10.1007/978-3-540-88643-3_10

    Chapter  Google Scholar 

  30. Zhang, S., Caragea, D., Ou, X.: An empirical study on using the national vulnerability database to predict software vulnerabilities. In: Hameurlain, A., Liddle, S.W., Schewe, K.-D., Zhou, X. (eds.) DEXA 2011. LNCS, vol. 6860, pp. 217–231. Springer, Heidelberg (2011). https://doi.org/10.1007/978-3-642-23088-2_15

    Chapter  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Lab STICC UMR6285, ENSTA Bretagne, Brest, France

    Bastien Drouot, Fahad R. Golra & Joël Champeau

Authors
  1. Bastien Drouot
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Fahad R. Golra
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Joël Champeau
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Bastien Drouot .

Editor information

Editors and Affiliations

  1. Siège du Groupe ESEO, Angers, France

    Slimane Hammoudi

  2. University of Twente, Enschede, The Netherlands

    Luís Ferreira Pires

  3. Malina Software Corporation, Nepean, ON, Canada

    Bran Selić

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Drouot, B., Golra, F.R., Champeau, J. (2020). A Role Modeling Based Approach for Cyber Threat Analysis. In: Hammoudi, S., Pires, L., Selić, B. (eds) Model-Driven Engineering and Software Development. MODELSWARD 2019. Communications in Computer and Information Science, vol 1161. Springer, Cham. https://doi.org/10.1007/978-3-030-37873-8_4

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-37873-8_4

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-37872-1

  • Online ISBN: 978-3-030-37873-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation