search menu icon-carat-right cmu-wordmark

Attack Modeling for Information Security and Survivability

Technical Note
This technical note describes and illustrates an approach for documenting attack information in a structured and reusable form.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2001-TN-001
DOI (Digital Object Identifier)
10.1184/R1/6572063.v1

Abstract

Many engineering disciplines rely on engineering failure data to improve their designs. Unfortunately, this is not the case with information system engineers, who generally do not use security failure data—particularly attack data—to improve the security and survivability of systems that they develop. Part of the reason for this is that, historically, businesses and governments have been reticent to disclose information about attacks on their systems for fear of losing public confidence or for fear that other attackers would exploit the same or similar vulnerabilities. Specific, detailed attack data has just not been available. 

However, increased public interest and media coverage of the Internet's security have resulted in increased publication of attack data in books, Internet and CERT security advisories, for example. Engineers can now use this data in a structured way to improve information system security and survivability.  

This technical note describes and illustrates an approach for documenting attack information in a structured and reusable form. We expect that security analysts can use this approach to document and identify commonly occurring attack patterns, and that information system designers and analysts can use these patterns to develop more survivable information systems.

Cite This Technical Note

Moore, A., Ellison, R., & Linger, R. (2001, March 1). Attack Modeling for Information Security and Survivability. (Technical Note CMU/SEI-2001-TN-001). Retrieved November 29, 2023, from https://doi.org/10.1184/R1/6572063.v1.

@techreport{moore_2001,
author={Moore, Andrew and Ellison, Robert and Linger, Richard},
title={Attack Modeling for Information Security and Survivability},
month={Mar},
year={2001},
number={CMU/SEI-2001-TN-001},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6572063.v1},
note={Accessed: 2023-Nov-29}
}

Moore, Andrew, Robert Ellison, and Richard Linger. "Attack Modeling for Information Security and Survivability." (CMU/SEI-2001-TN-001). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, March 1, 2001. https://doi.org/10.1184/R1/6572063.v1.

A. Moore, R. Ellison, and R. Linger, "Attack Modeling for Information Security and Survivability," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Note CMU/SEI-2001-TN-001, 1-Mar-2001 [Online]. Available: https://doi.org/10.1184/R1/6572063.v1. [Accessed: 29-Nov-2023].

Moore, Andrew, Robert Ellison, and Richard Linger. "Attack Modeling for Information Security and Survivability." (Technical Note CMU/SEI-2001-TN-001). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 1 Mar. 2001. https://doi.org/10.1184/R1/6572063.v1. Accessed 29 Nov. 2023.

Moore, Andrew; Ellison, Robert; & Linger, Richard. Attack Modeling for Information Security and Survivability. CMU/SEI-2001-TN-001. Software Engineering Institute. 2001. https://doi.org/10.1184/R1/6572063.v1