Combination approach to select optimal countermeasures based on the RORI index

Abstract

As new and more sophisticated computer attacks appear across the Internet, sometimes with unknown dimensions and criticality, the implementation of individual security solutions become less effective and in some cases useless. Instead, a combined approach is required to guarantee an appropriate and cost-effective mitigation of such attacks. Most of the current work suggests the deployment of multiple countermeasures as a single treatment to mitigate the effects of complex attacks. However, the methodology to analyze and evaluate combined solutions is either hardly explained or very complicated to implement. This paper, therefore proposes a simple and well-structured approach to select the optimal combination of countermeasures by maximizing the cost-effectiveness ratio of the countermeasures, this ratio being measured by the Return on Response Investment (RORI) index. A case study is provided at the end of the document to show the applicability of the model over a critical infrastructure process control.

6 Figures and Tables

Cite this paper

@article{Granadillo2012CombinationAT, title={Combination approach to select optimal countermeasures based on the RORI index}, author={Gustavo Gonzalez Granadillo and Gr{\'e}goire Jacob and Herv233 Debar and Luigi Coppolino}, journal={Second International Conference on the Innovative Computing Technology (INTECH 2012)}, year={2012}, pages={38-45} }