Security Risk Assessment of Server Hardware Architectures using Graph Analysis

被引:0
|
作者
Koteshwara, Sandhya [1 ]
机构
[1] IBM TJ Watson Res Ctr, Yorktown Hts, NY 10598 USA
来源
PROCEEDINGS OF THE 2021 ASIAN HARDWARE ORIENTED SECURITY AND TRUST SYMPOSIUM (ASIANHOST) | 2021年
关键词
Hardware Security; Security Risk Assessment; Hard-ware Security Metrics;
D O I
10.1109/ASIANHOST53231.2021.9699554
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
The growing complexity of server architectures, which incorporate several components with state, has necessitated rigorous assessment of the security risk both during design and operation. In this paper, we propose a novel technique to model the security risk of servers by mapping their architectures to graphs. This allows us to leverage tools from computational graph theory, which we combine with probability theory for deriving quantitative metrics for risk assessment. Probability of attack is derived for server components, with prior probabilities assigned based on knowledge of existing vulnerabilities and countermeasures. The resulting analysis is further used to compute measures of impact and exploitability of attack. The proposed methods are demonstrated on two open-source server designs with different architectures.
引用
收藏
页数:4
相关论文
共 50 条
  • [1] Hardware Security Risk Assessment: A Case Study
    Sherman, Brent
    Wheeler, David
    [J]. PROCEEDINGS OF THE 2016 IEEE INTERNATIONAL SYMPOSIUM ON HARDWARE ORIENTED SECURITY AND TRUST (HOST), 2016, : 179 - 184
  • [2] The Rise of Hardware Security in Computer Architectures
    Schaumont, Patrick
    Montuschi, Paolo
    [J]. COMPUTER, 2018, 51 (08) : 4 - 5
  • [3] Architectures for Security: A comparative analysis of hardware security features in Intel SGX and ARM TrustZone
    Mukhtar, Muhammad Asim
    Bhatti, Muhammad Khurram
    Gogniat, Guy
    [J]. 2019 2ND INTERNATIONAL CONFERENCE ON COMMUNICATION, COMPUTING AND DIGITAL SYSTEMS (C-CODE), 2019, : 299 - 304
  • [4] Exploring risk flow attack graph for security risk assessment
    Dai, Fangfang
    Hu, Ying
    Zheng, Kangfeng
    Wu, Bin
    [J]. IET INFORMATION SECURITY, 2015, 9 (06) : 344 - 353
  • [5] Titan: Security Analysis of Large-Scale Hardware Obfuscation Using Graph Neural Networks
    Mankali, Likhitha
    Alrahis, Lilas
    Patnaik, Satwik
    Knechtel, Johann
    Sinanoglu, Ozgur
    [J]. IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2023, 18 : 304 - 318
  • [6] Hardware security without secure hardware: How to decrypt with a password and a server
    Blazy, Olivier
    Brouilhet, Laura
    Chevalier, Celine
    Towa, Patrick
    Tucker, Ida
    Vergnaud, Damien
    [J]. THEORETICAL COMPUTER SCIENCE, 2021, 895 : 178 - 211
  • [7] Cloud Server Benchmark Suite for Evaluating New Hardware Architectures
    Wu, Hao
    Liu, Fangfei
    Lee, Ruby B.
    [J]. IEEE COMPUTER ARCHITECTURE LETTERS, 2017, 16 (01) : 14 - 17
  • [8] Network Security Risk Assessment Based on Attack Graph
    Xie, Lixia
    Zhang, Xiao
    Zhang, Jiyong
    [J]. JOURNAL OF COMPUTERS, 2013, 8 (09) : 2339 - 2347
  • [9] A Theoretical Study of Hardware Architecture for Network Security Server
    Lee, Joong-Yeon
    Oh, In-Taek
    Lee, Nam-Yong
    Park, Jin-Ho
    [J]. ADVANCES IN COMPUTER SCIENCE AND UBIQUITOUS COMPUTING, 2017, 421 : 525 - 530
  • [10] Automatic security management of smart infrastructures using attack graph and risk analysis
    Ivanov, Denis
    Kalinin, Maxim
    Krudyshev, Vasiliy
    Orel, Evgeniy
    [J]. PROCEEDINGS OF THE 2020 FOURTH WORLD CONFERENCE ON SMART TRENDS IN SYSTEMS, SECURITY AND SUSTAINABILITY (WORLDS4 2020), 2020, : 295 - 300
12345