graphical models for security overview challenges and
play

Graphical Models for Security: Overview, Challenges and - PowerPoint PPT Presentation

Jan 26, 2024 •329 likes •852 views

GraMSec 2014 Graphical Models for Security: Overview, Challenges and Recommendations Ketil Stlen, SINTEF and University of Oslo Grenoble, April 12, 2014 Technology for a better society 1 This talk aims to provide A classification of

  1. GraMSec 2014 Graphical Models for Security: Overview, Challenges and Recommendations Ketil Stølen, SINTEF and University of Oslo Grenoble, April 12, 2014 Technology for a better society 1

  2. This talk aims to provide • A classification of graphical approaches to security, risk and threat modelling • A characterization of major challenges within graphical modelling with particular focus on security, risk and threats • Recommendations for how to deal with these challenges Technology for a better society 2

  3. Structure of talk Technology for a better society 3

  4. Part I Classification of graphical approaches to security, risk and threat modelling Technology for a better society 4

  5. Why are you interested in graphical models for security? Technology for a better society 5

  6. What is a graphical model? Technology for a better society 6

  7. One proposal Graphical models are a marriage between probability theory and graph theory. They provide a natural tool for dealing with two problems that occur throughout applied mathematics and engineering ‐‐ uncertainty and complexity … From preface of Learning In Graphical Models by Michael I. Jordan Technology for a better society 7

  8. One proposal Graphical models are a marriage between probability theory and graph theory. They provide a natural tool for dealing with two problems that occur throughout applied mathematics and engineering – uncertainty and complexity … From preface of Learning In Graphical Models by Michael I. Jordan Too Narrow! Technology for a better society 8

  9. Wikipedia says A graphical model is a probabilistic model for which a graph denotes the conditional dependence structure between random variables Technology for a better society 9

  10. Wikipedia says A graphical model is a probabilistic model for which a graph denotes the conditional dependence structure between random variables Too Narrow! Technology for a better society 10

  11. What makes textual representations different from graphical? • Textual representations are one ‐ dimensional • Graphical representations are two ‐ dimensional Technology for a better society 11

  12. Definition of a graphical model A representation in which information is indexed by two ‐ dimensional location J.H Larkin & H.A. Simon:1987 Technology for a better society 12

  13. What is a good graphical model? Technology for a better society 13

  14. From R.N.Shepard:90 Technology for a better society 14

  15. It does matter! Research in diagrammatic reasoning shows that the form of representations has an equal, if not greater, influence on cognitive effectiveness as their content D.L. Moody:2009 Technology for a better society 15

  16. What is security? • OR more specific: What is cybersecurity ? Technology for a better society 16

  17. Information security Preservation of confidentiality, integrity and availability of information ISO/IEC 17799:2005 Technology for a better society 17

  18. From information security to cyber security: Step 1 • Prevention of cyber incidents with respect to the confidentiality, integrity and availability of information Technology for a better society 18

  19. From information security to cyber security: Step 2 • Prevention of cyber incidents with respect to the confidentiality, integrity and availability of information and infrastructure Technology for a better society 19

  20. Information security vs cyber security, summarised Technology for a better society 20

  21. What kind of approaches for graphical modelling are there? • Software engineering • Flow ‐ charts • Entity ‐ relation diagrams • Use ‐ case diagrams • State ‐ machines • Activity diagrams • Sequence diagrams • Statistics/risk analysis • Tables • Trees • Graphs Technology for a better society 21

  22. What kind of approaches for graphical modelling of security are there? • Software engineering • Flow ‐ charts  Security flow ‐ charts ( M.Abi ‐ Antoun et al:2007 ) • Entity ‐ relation diagrams  Secure UML ( T.Lodderstedt et al:2002 ) • Use ‐ case diagrams  Misuse ‐ case diagrams ( G.Sindre et al:2000 ) • State ‐ machines  Bell–LaPadula ( W.Caelli et al:1994 ) • Activity diagrams  UMLSec ( J.Jürjens:2004 ) • Sequence diagrams  Deontic STAIRS ( B.Solhaug:2009 ) • Statistics/risk analysis • Tables  DREAD tables ( MICROSOFT:2003 ) • Trees  Attack trees ( B.Schneier:1999 ) • Graphs  CORAS threat diagrams ( M.S.Lund et al:2011 ) Technology for a better society 22

  23. What makes graphical models for security special ? • Misbehaviour • Human intensions • Capabilities • Defences • Vulnerabilities • Soft as opposed to hard constraints Technology for a better society 23

  24. Part II • Major challenges within graphical modelling with particular focus on security, risk and threats • Recommendations for how to deal with these challenges Technology for a better society 24

  25. Seven iterations 1. Relationship to ontology 2. The number of symbols 3. What kind of symbols 4. Semantics 5. Documenting consequence 6. Documenting likelihood 7. Documenting risk Technology for a better society 25

  26. Challenge 1: Relationship to ontology Technology for a better society 26

  27. Ontology for risk modelling Party Vulnerability Asset Threat Treatment Likelihood Unwanted incident Risk Consequence Technology for a better society 27

  28. Make sure to avoid • Construct deficit • Construct overload • Construct redundancy • Construct excess Technology for a better society 28

  29. Challenge 2: The number of symbols? Technology for a better society 29

  30. The amount of information that is transmitted by a human being along one dimension is seven, plus or minus two (G.A. Miller:1956) Technology for a better society 30

  31. Most humans cannot reliably transmit more than • 6 pitches (tones) • 5 levels of loudness • 4 tastes of salt intensities • 10 visual positions (short exposure) • 5 sizes of squares • 6 levels of brightness Technology for a better society 31

  32. Fix: Use several dimensions! Technology for a better society 32

  33. Challenge 3: What kind of symbols Technology for a better society 33

  34. (D.L.Moody:2009) recommends amongst others • Different symbols should be clearly distinguishable • Use visual representations suggesting their meaning • Include explicit mechanisms to deal with complexity • Include explicit mechanisms to support integration • Use the full range of capacities of visual variables Technology for a better society 34

  35. Be aware of the theory of gestalt psychology • Law of proximity • Law of similarity • Law of closure • Law of symmetry • Law of common fate • Law of continuity • Law of good gestalt • Law of past experience Technology for a better society 35

  36. Challenge 4: Semantics Technology for a better society 36

  37. What is a semantics? Technology for a better society 37

  38. Why do we bother to define semantics? Technology for a better society 38

  39. • You need more than one semantics • Start by defining a natural language semantics • Make sure the semantics works for incomplete diagrams • Be careful with hidden constraints • The ability to capture inconsistencies is often a good thing Technology for a better society 39

  40. Challenge 5: Documenting consequence Technology for a better society 40

  41. When I was young and stupid I measured any loss, impact or consequence in monetary value That's not a good idea! Technology for a better society 41

  42. Fix • Define assets carefully • Decompose or try to avoid fluffy assets • Define concrete scales for each asset Technology for a better society 42

  43. Challenge 6: Documenting likelihood Technology for a better society 43

  44. Bad communication: Probability (G. Gigerenzer:2002) • "30 ‐ 50% probability for sexual problems if you take for Prozac" means ... – of 10 times you have sex, you will get problems in 3 ‐ 5? – of 10 patients, 3 ‐ 5 will get problems? – ... Technology for a better society 44

  45. Bad communication: Probability • Implicit reference – invites missunderstandings • Fix: Use frequencies – "Of 10 patients 3 ‐ 5 will get sexual problems " http://www.fun ‐ damentals.com/tag/communication/, 19/3 ‐ 2014 Technology for a better society 45

  46. Challenge 7: Documenting risk Technology for a better society 46

  47. Bad communication: Relative risk (G. Gigerenzer:2002) • "People with a high level of colestreaol may reduce their risk of death by 22 % by taking medicine X" • Basis for statement (Treatment in 5 years): Treatment # deaths pr 1000 with high colestreaol 41 � 32 � 22% Medicine X 32 41 Placebo 41 Technology for a better society 47

  48. Bad communication: Relative risk • Often missunderstood as follows: "If 1000 persons with high colestreole takes medicine X, 220 will be saved." • Fix: Formulate as absolute risk reduction: • Medicine X reduces the number of deaths from 41 to 32 per 1000. • The absolute risk reduction is 9 per 1000, i.e. 0,9 %. Technology for a better society 48

Recommend

Undirected Graphical Models Aaron Courville, Universit de Montral 2 (UNDIRECTED) GRAPHICAL

Undirected Graphical Models Aaron Courville, Universit de Montral 2 (UNDIRECTED) GRAPHICAL

Undirected Graphical Models Aaron Courville, Universit de Montral 2 (UNDIRECTED) GRAPHICAL MODELS Overview : Directed versus undirected graphical models Conditional independence Energy function formalism Maximum likelihood

1.06k views • 61 slides
Transforming Graphical System Models to Graphical Attack Models ! Joint work with Marieta

Transforming Graphical System Models to Graphical Attack Models ! Joint work with Marieta

From Graphical System Models... ... to Graphical Attack Models ... ... to Risk Assessment Transforming Graphical System Models to Graphical Attack Models ! Joint work with Marieta Georgieva Ivanova, ! ! Ren e Rydhof Hansen, and Florian

650 views • 27 slides
Graphical Models Graphical Models Bayesian Networks Siamak Ravanbakhsh Fall 2019 Previously on

Graphical Models Graphical Models Bayesian Networks Siamak Ravanbakhsh Fall 2019 Previously on

Graphical Models Graphical Models Bayesian Networks Siamak Ravanbakhsh Fall 2019 Previously on Previously on Probabilistic Graphical Models Probabilistic Graphical Models Probability distribution and density functions Random variable

1.39k views • 104 slides
Probabilistic Graphical Models Probabilistic Graphical Models Undirected Models Fall 2019

Probabilistic Graphical Models Probabilistic Graphical Models Undirected Models Fall 2019

Probabilistic Graphical Models Probabilistic Graphical Models Undirected Models Fall 2019 Siamak Ravanbakhsh Learning objectives Learning objectives Markov networks: how it represents a prob. dist. independence assumptions

941 views • 57 slides
Directed Graphical Models: Bayesian Networks Probabilistic Graphical Models Sharif University of

Directed Graphical Models: Bayesian Networks Probabilistic Graphical Models Sharif University of

Directed Graphical Models: Bayesian Networks Probabilistic Graphical Models Sharif University of Technology Soleymani Spring 2018 Basics Multivariate distributions with large number of variables Independency assumptions are useful

503 views • 36 slides
Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Spring 2017

Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Spring 2017

Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Spring 2017 Bozhena Bidyuk Rina Dechter Reading Darwiche chapter 15, related papers Overview 1. Probabilistic Reasoning/Graphical models 2. Importance

889 views • 63 slides
Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Fall 2014

Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Fall 2014

Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Fall 2014 Bozhena Bidyuk Rina Dechter Reading Darwiche chapter 15, related papers Overview 1. Probabilistic Reasoning/Graphical models 2. Importance

923 views • 63 slides
Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Spring 2017

Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Spring 2017

Sampling Techniques for Probabilistic and Deterministic Graphical models ICS 276, Spring 2017 Bozhena Bidyuk Rina Dechter Reading Darwiche chapter 15, related papers Overview 1. Probabilistic Reasoning/Graphical models 2. Importance

1.03k views • 54 slides
Graphical Models Independence & Factorization Including structure Complexity of

Graphical Models Independence & Factorization Including structure Complexity of

Graphical Models slides adopted from Sandro Schnborn 1 Graphical Models Independence & Factorization Including structure Complexity of multivariate problems Independence assumptions Graphical Models Graphs to depict

385 views • 23 slides
Probabilistic reasoning with graphical security models Barbara Kordy Clermont-Ferrand, January

Probabilistic reasoning with graphical security models Barbara Kordy Clermont-Ferrand, January

Probabilistic reasoning with graphical security models Barbara Kordy Clermont-Ferrand, January 7, 2016 Digital Confidence seminar Joint work Prof. Dr. Marc Pouly Lucerne University of Applied Sciences and Arts Dr. Patrick Schweitzer

903 views • 54 slides
Probabilistic Graphical Models Probabilistic Graphical Models Variable elimination Siamak

Probabilistic Graphical Models Probabilistic Graphical Models Variable elimination Siamak

Probabilistic Graphical Models Probabilistic Graphical Models Variable elimination Siamak Ravanbakhsh Fall 2019 Learning objective Learning objective an intuition for inference in graphical models why is it difficult? exact inference by

1.49k views • 62 slides
Slides Set 9(part b): Sampling Techniques for Probabilistic and Deterministic Graphical models

Slides Set 9(part b): Sampling Techniques for Probabilistic and Deterministic Graphical models

Reasoning with graphical models Slides Set 9(part b): Sampling Techniques for Probabilistic and Deterministic Graphical models Rina Dechter (Reading Darwiche chapter 15, cutset-sampling paper posted) slides 9b 276 2020 Overview 1.

1.02k views • 63 slides
Probabilistic Graphical Models CMSC 691 UMBC Two Problems for Graphical Models 1 ,

Probabilistic Graphical Models CMSC 691 UMBC Two Problems for Graphical Models 1 ,

Probabilistic Graphical Models CMSC 691 UMBC Two Problems for Graphical Models 1 , 2 , 3 , , = 1 Finding the normalizer Computing the marginals Two Problems for Graphical

778 views • 61 slides
Undirected Graphical Models: Markov Random Fields Probabilistic Graphical Models Sharif

Undirected Graphical Models: Markov Random Fields Probabilistic Graphical Models Sharif

Undirected Graphical Models: Markov Random Fields Probabilistic Graphical Models Sharif University of Technology Soleymani Spring 2018 Markov Network Structure: undirected graph Undirected edges show correlations (non-causal

870 views • 53 slides
Dynamic graphical models for security and safety joint modeling July 12 th 2015 GraMSec Workshop,

Dynamic graphical models for security and safety joint modeling July 12 th 2015 GraMSec Workshop,

Dynamic graphical models for security and safety joint modeling July 12 th 2015 GraMSec Workshop, Verona Marc Bouissou 1,2 Siwar Kriaa 1,2 Ludovic Pitre-Cambacds 1 1 EDF R&D, 2 cole Centrale Paris Context: pervasive computing Rail

784 views • 74 slides
Probabilistic Graphical Models Probabilistic Graphical Models Parameter learning in Bayesian

Probabilistic Graphical Models Probabilistic Graphical Models Parameter learning in Bayesian

Probabilistic Graphical Models Probabilistic Graphical Models Parameter learning in Bayesian networks Siamak Ravanbakhsh Fall 2019 Learning objectives Learning objectives likelihood function and MLE role of the sufficient statistics MLE for

644 views • 60 slides
Graphical models from an algebraic perspective Elina Robeva MIT ICERM Nonlinear Algebra Bootcamp

Graphical models from an algebraic perspective Elina Robeva MIT ICERM Nonlinear Algebra Bootcamp

Graphical models from an algebraic perspective Elina Robeva MIT ICERM Nonlinear Algebra Bootcamp September 11, 2018 1 / 29 Overview Undirected graphical models Definition and parametric description Markov properties and implicit

835 views • 52 slides
Outline 1 What are Graphical Models? Infering Graphical Models from Time Series Graph Theory 2

Outline 1 What are Graphical Models? Infering Graphical Models from Time Series Graph Theory 2

Outline Outline Outline 1 What are Graphical Models? Infering Graphical Models from Time Series Graph Theory 2 Modelling, Simulating, and Inference of Complex Biological Graphs and Digraphs Systems Dags 3 Probability Theory Speaker:

359 views • 7 slides
Graphical Models Graphical Models Relationship between the directed & undirected models

Graphical Models Graphical Models Relationship between the directed & undirected models

Graphical Models Graphical Models Relationship between the directed & undirected models Siamak Ravanbakhsh Winter 2018 Two directions Two directions Markov network Bayes-net Markov network Bayes-net

311 views • 19 slides
Probabilistic Graphical Models Probabilistic Graphical Models parameter learning in undirected

Probabilistic Graphical Models Probabilistic Graphical Models parameter learning in undirected

Probabilistic Graphical Models Probabilistic Graphical Models parameter learning in undirected models Siamak Ravanbakhsh Fall 2019 Learning objectives Learning objectives the form of likelihood for undirected models why is it difficult to

826 views • 49 slides
Two types of GMs Directed edges give causality relationships ( Bayesian Network or Directed

Two types of GMs Directed edges give causality relationships ( Bayesian Network or Directed

School of Computer Science Undirected Graphical Models Probabilistic Graphical Models (10- Probabilistic Graphical Models (10 -708) 708) Lecture 2, Sep 17, 2007 Receptor A Receptor A X 1 X 1 X 1 Receptor B Receptor B X 2 X 2 X 2 Eric

485 views • 21 slides
Two types of GMs Directed edges give causality relationships ( Bayesian Network or Directed

Two types of GMs Directed edges give causality relationships ( Bayesian Network or Directed

School of Computer Science Undirected Graphical Models Probabilistic Graphical Models (10- Probabilistic Graphical Models (10 -708) 708) Lecture 2, Sep 17, 2007 Receptor A Receptor A X 1 X 1 X 1 Receptor B Receptor B X 2 X 2 X 2 Eric

692 views • 20 slides
Directed Graphical Models + Undirected Graphical Models Matt Gormley Lecture 7 Sep. 18, 2019

Directed Graphical Models + Undirected Graphical Models Matt Gormley Lecture 7 Sep. 18, 2019

10-418 / 10-618 Machine Learning for Structured Data Machine Learning Department School of Computer Science Carnegie Mellon University Directed Graphical Models + Undirected Graphical Models Matt Gormley Lecture 7 Sep. 18, 2019 1 Q&A

590 views • 39 slides
Probabilistic Graphical Models Probabilistic Graphical Models Exponential family &

Probabilistic Graphical Models Probabilistic Graphical Models Exponential family &

Probabilistic Graphical Models Probabilistic Graphical Models Exponential family & Variational Inference I Siamak Ravanbakhsh Fall 2019 Learning objectives Learning objectives entropy exponential family distribution duality in

1.38k views • 85 slides

More recommend