2016-05-26 10:00:06 +0200 | received badge | ● Notable Question (source) |
2016-05-26 10:00:06 +0200 | received badge | ● Famous Question (source) |
2016-03-22 09:32:33 +0200 | received badge | ● Enthusiast |
2016-03-14 15:44:21 +0200 | received badge | ● Popular Question (source) |
2016-03-08 14:50:57 +0200 | asked a question | Inconsistencies in logical/topological attack graphs/paths I'm facing a problem with understanding attack graphs, attack paths in both: logical and topological view - I conisder generated graphs are inconsistent. Example 1Firstly I tried to analyze this input file from examples: https://github.com/fiware-cybercaptor... I uploaded the xml and generated graph with no errors or warnings. Graph has only one attack path. Example 1a: Logical Attack Graph + Attack Path As far as I understand Attack Path differs from Attack graph in that way the directed arcs/arrows are aimed at opposite direction. In a Graph theory a Path is a subgraph of a Graph. The problem is that both generated logical graphs (attack path and attack graph) are structurally different: Major differences are marked on the picture above. A subpath containing most important vertex (the attack indicator - rule Example 1b: Topological Attack Graph + Attack Path The structure of topological attack graph and attack path have different direction of edges. Why? Example 2Second example is from this appendix: https://github.com/fiware-cybercaptor... [end of the page] There are generated 2 attack paths - only first is considered. Example 2 (three screenshots): Logical and topological view of attack path and topological attack graph Logical attack path shows that the consequence of an attack is code execution on linux-user-2 Bottom screenshot show topological view of attack graph where one of the targets is linux-user-2. For me these observed differences are crucial and discredit whole attack graph analysis. Please correct me if I'm wrong, maybe I understand these graphs in wrong way, so please explain me the process of reading the results - how and why these graphs are so different. I'm desirious to involve myself into this project, it's great and after 2 weeks of fiddling with it I've got with many ideas how to improve it. If these issues are real please guide me how to fix them. |