Formalizing Threat Models for Virtualized Systems View Full Text


Ontology type: schema:Chapter      Open Access: True


Chapter Info

DATE

2016-07-02

AUTHORS

Daniele Sgandurra , Erisa Karafili , Emil Lupu

ABSTRACT

We propose a framework, called FATHoM (FormAlizing THreat Models), to define threat models for virtualized systems. For each component of a virtualized system, we specify a set of security properties that defines its control responsibility, its vulnerability and protection states. Relations are used to represent how assumptions made about a component’s security state restrict the assumptions that can be made on the other components. FATHoM includes a set of rules to compute the derived security states from the assumptions and the components’ relations. A further set of relations and rules is used to define how to protect the derived vulnerable components. The resulting system is then analysed, among others, for consistency of the threat model. We have developed a tool that implements FATHoM, and have validated it with use-cases adapted from the literature. More... »

PAGES

251-267

Book

TITLE

Data and Applications Security and Privacy XXX

ISBN

978-3-319-41482-9
978-3-319-41483-6

Identifiers

URI

http://scigraph.springernature.com/pub.10.1007/978-3-319-41483-6_18

DOI

http://dx.doi.org/10.1007/978-3-319-41483-6_18

DIMENSIONS

https://app.dimensions.ai/details/publication/pub.1041750907


Indexing Status Check whether this publication has been indexed by Scopus and Web Of Science using the SN Indexing Status Tool
Incoming Citations Browse incoming citations for this publication using opencitations.net

JSON-LD is the canonical representation for SciGraph data.

TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT

[
  {
    "@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json", 
    "about": [
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/16", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Studies in Human Society", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/1606", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Political Science", 
        "type": "DefinedTerm"
      }
    ], 
    "author": [
      {
        "affiliation": {
          "alternateName": "Imperial College London, 180 Queen\u2019s Gate, SW7 2AZ, London, UK", 
          "id": "http://www.grid.ac/institutes/grid.7445.2", 
          "name": [
            "Imperial College London, 180 Queen\u2019s Gate, SW7 2AZ, London, UK"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Sgandurra", 
        "givenName": "Daniele", 
        "id": "sg:person.07601314332.16", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07601314332.16"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Imperial College London, 180 Queen\u2019s Gate, SW7 2AZ, London, UK", 
          "id": "http://www.grid.ac/institutes/grid.7445.2", 
          "name": [
            "Imperial College London, 180 Queen\u2019s Gate, SW7 2AZ, London, UK"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Karafili", 
        "givenName": "Erisa", 
        "id": "sg:person.012361707104.86", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012361707104.86"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Imperial College London, 180 Queen\u2019s Gate, SW7 2AZ, London, UK", 
          "id": "http://www.grid.ac/institutes/grid.7445.2", 
          "name": [
            "Imperial College London, 180 Queen\u2019s Gate, SW7 2AZ, London, UK"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Lupu", 
        "givenName": "Emil", 
        "id": "sg:person.013404167044.28", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013404167044.28"
        ], 
        "type": "Person"
      }
    ], 
    "datePublished": "2016-07-02", 
    "datePublishedReg": "2016-07-02", 
    "description": "We propose a framework, called FATHoM (FormAlizing THreat Models), to define threat models for virtualized systems. For each component of a virtualized system, we specify a set of security properties that defines its control responsibility, its vulnerability and protection states. Relations are used to represent how assumptions made about a component\u2019s security state restrict the assumptions that can be made on the other components. FATHoM includes a set of rules to compute the derived security states from the assumptions and the components\u2019 relations. A further set of relations and rules is used to define how to protect the derived vulnerable components. The resulting system is then analysed, among others, for consistency of the threat model. We have developed a tool that implements FATHoM, and have validated it with use-cases adapted from the literature.", 
    "editor": [
      {
        "familyName": "Ranise", 
        "givenName": "Silvio", 
        "type": "Person"
      }, 
      {
        "familyName": "Swarup", 
        "givenName": "Vipin", 
        "type": "Person"
      }
    ], 
    "genre": "chapter", 
    "id": "sg:pub.10.1007/978-3-319-41483-6_18", 
    "isAccessibleForFree": true, 
    "isPartOf": {
      "isbn": [
        "978-3-319-41482-9", 
        "978-3-319-41483-6"
      ], 
      "name": "Data and Applications Security and Privacy XXX", 
      "type": "Book"
    }, 
    "keywords": [
      "virtualized systems", 
      "threat model", 
      "security state", 
      "security properties", 
      "set of rules", 
      "protection state", 
      "control responsibilities", 
      "set", 
      "component relations", 
      "vulnerable components", 
      "system", 
      "rules", 
      "framework", 
      "model", 
      "vulnerability", 
      "tool", 
      "components", 
      "state", 
      "relation", 
      "assumption", 
      "consistency", 
      "responsibility", 
      "further set", 
      "literature", 
      "fathoms", 
      "properties"
    ], 
    "name": "Formalizing Threat Models for Virtualized Systems", 
    "pagination": "251-267", 
    "productId": [
      {
        "name": "dimensions_id", 
        "type": "PropertyValue", 
        "value": [
          "pub.1041750907"
        ]
      }, 
      {
        "name": "doi", 
        "type": "PropertyValue", 
        "value": [
          "10.1007/978-3-319-41483-6_18"
        ]
      }
    ], 
    "publisher": {
      "name": "Springer Nature", 
      "type": "Organisation"
    }, 
    "sameAs": [
      "https://doi.org/10.1007/978-3-319-41483-6_18", 
      "https://app.dimensions.ai/details/publication/pub.1041750907"
    ], 
    "sdDataset": "chapters", 
    "sdDatePublished": "2022-10-01T07:01", 
    "sdLicense": "https://scigraph.springernature.com/explorer/license/", 
    "sdPublisher": {
      "name": "Springer Nature - SN SciGraph project", 
      "type": "Organization"
    }, 
    "sdSource": "s3://com-springernature-scigraph/baseset/20221001/entities/gbq_results/chapter/chapter_89.jsonl", 
    "type": "Chapter", 
    "url": "https://doi.org/10.1007/978-3-319-41483-6_18"
  }
]
 

Download the RDF metadata as:  json-ld nt turtle xml License info

HOW TO GET THIS DATA PROGRAMMATICALLY:

JSON-LD is a popular format for linked data which is fully compatible with JSON.

curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-41483-6_18'

N-Triples is a line-based linked data format ideal for batch operations.

curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-41483-6_18'

Turtle is a human-readable linked data format.

curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-41483-6_18'

RDF/XML is a standard XML format for linked data.

curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-41483-6_18'


 

This table displays all metadata directly associated to this object as RDF triples.

104 TRIPLES      22 PREDICATES      50 URIs      43 LITERALS      7 BLANK NODES

Subject Predicate Object
1 sg:pub.10.1007/978-3-319-41483-6_18 schema:about anzsrc-for:16
2 anzsrc-for:1606
3 schema:author Na23b83559a674c9f9982dbe5a35a9c1e
4 schema:datePublished 2016-07-02
5 schema:datePublishedReg 2016-07-02
6 schema:description We propose a framework, called FATHoM (FormAlizing THreat Models), to define threat models for virtualized systems. For each component of a virtualized system, we specify a set of security properties that defines its control responsibility, its vulnerability and protection states. Relations are used to represent how assumptions made about a component’s security state restrict the assumptions that can be made on the other components. FATHoM includes a set of rules to compute the derived security states from the assumptions and the components’ relations. A further set of relations and rules is used to define how to protect the derived vulnerable components. The resulting system is then analysed, among others, for consistency of the threat model. We have developed a tool that implements FATHoM, and have validated it with use-cases adapted from the literature.
7 schema:editor Ne8a983613b1343faad03face8917aad3
8 schema:genre chapter
9 schema:isAccessibleForFree true
10 schema:isPartOf Nba8baf6b8edb4d43ad8c36f5832e41d0
11 schema:keywords assumption
12 component relations
13 components
14 consistency
15 control responsibilities
16 fathoms
17 framework
18 further set
19 literature
20 model
21 properties
22 protection state
23 relation
24 responsibility
25 rules
26 security properties
27 security state
28 set
29 set of rules
30 state
31 system
32 threat model
33 tool
34 virtualized systems
35 vulnerability
36 vulnerable components
37 schema:name Formalizing Threat Models for Virtualized Systems
38 schema:pagination 251-267
39 schema:productId N1e43851f4cbd4aa193e7486768ffccab
40 N384a913f1a254c059cf71707e3dcf441
41 schema:publisher N2e94d7f8ee524391a50aa5fdec901dd3
42 schema:sameAs https://app.dimensions.ai/details/publication/pub.1041750907
43 https://doi.org/10.1007/978-3-319-41483-6_18
44 schema:sdDatePublished 2022-10-01T07:01
45 schema:sdLicense https://scigraph.springernature.com/explorer/license/
46 schema:sdPublisher Nc3624c34c9e54e85a5a3db9d042d8893
47 schema:url https://doi.org/10.1007/978-3-319-41483-6_18
48 sgo:license sg:explorer/license/
49 sgo:sdDataset chapters
50 rdf:type schema:Chapter
51 N04ea64db33d44ca09c78e8d07b409b15 rdf:first sg:person.013404167044.28
52 rdf:rest rdf:nil
53 N1e43851f4cbd4aa193e7486768ffccab schema:name dimensions_id
54 schema:value pub.1041750907
55 rdf:type schema:PropertyValue
56 N2e94d7f8ee524391a50aa5fdec901dd3 schema:name Springer Nature
57 rdf:type schema:Organisation
58 N384a913f1a254c059cf71707e3dcf441 schema:name doi
59 schema:value 10.1007/978-3-319-41483-6_18
60 rdf:type schema:PropertyValue
61 N56b318bf09544dc09cf9bf1ba0f8fcd4 rdf:first sg:person.012361707104.86
62 rdf:rest N04ea64db33d44ca09c78e8d07b409b15
63 N571ba6ecfc09454e9227ae149bde2f4d rdf:first Nb3fc33fb33a9413093f807dc978f2ead
64 rdf:rest rdf:nil
65 Na23b83559a674c9f9982dbe5a35a9c1e rdf:first sg:person.07601314332.16
66 rdf:rest N56b318bf09544dc09cf9bf1ba0f8fcd4
67 Nb3fc33fb33a9413093f807dc978f2ead schema:familyName Swarup
68 schema:givenName Vipin
69 rdf:type schema:Person
70 Nba8baf6b8edb4d43ad8c36f5832e41d0 schema:isbn 978-3-319-41482-9
71 978-3-319-41483-6
72 schema:name Data and Applications Security and Privacy XXX
73 rdf:type schema:Book
74 Nc3624c34c9e54e85a5a3db9d042d8893 schema:name Springer Nature - SN SciGraph project
75 rdf:type schema:Organization
76 Nc74a7cd1568e459b9148f8d9adfcd049 schema:familyName Ranise
77 schema:givenName Silvio
78 rdf:type schema:Person
79 Ne8a983613b1343faad03face8917aad3 rdf:first Nc74a7cd1568e459b9148f8d9adfcd049
80 rdf:rest N571ba6ecfc09454e9227ae149bde2f4d
81 anzsrc-for:16 schema:inDefinedTermSet anzsrc-for:
82 schema:name Studies in Human Society
83 rdf:type schema:DefinedTerm
84 anzsrc-for:1606 schema:inDefinedTermSet anzsrc-for:
85 schema:name Political Science
86 rdf:type schema:DefinedTerm
87 sg:person.012361707104.86 schema:affiliation grid-institutes:grid.7445.2
88 schema:familyName Karafili
89 schema:givenName Erisa
90 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012361707104.86
91 rdf:type schema:Person
92 sg:person.013404167044.28 schema:affiliation grid-institutes:grid.7445.2
93 schema:familyName Lupu
94 schema:givenName Emil
95 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.013404167044.28
96 rdf:type schema:Person
97 sg:person.07601314332.16 schema:affiliation grid-institutes:grid.7445.2
98 schema:familyName Sgandurra
99 schema:givenName Daniele
100 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07601314332.16
101 rdf:type schema:Person
102 grid-institutes:grid.7445.2 schema:alternateName Imperial College London, 180 Queen’s Gate, SW7 2AZ, London, UK
103 schema:name Imperial College London, 180 Queen’s Gate, SW7 2AZ, London, UK
104 rdf:type schema:Organization
 




Preview window. Press ESC to close (or click here)


...