Abstract:
Attack detection and prevention is an essential subject in contemporary security practices. Like early detection of attacks, fast decision that includes optimum option is also an important issue. Selection of right prevention is a job of IT experts but they need well extracted data such as metrics, figures and tables. The whole process can be called a countermeasure selection. Countermeasure selection not only related to diminishing attacks’ effects but also spending minimum money on that issue. That means investment upon countermeasure should be well spent. Return on response investment is a crucial aspect to satisfy company’s needs. For this purpose, this work relies on RORI index to decide optimum countermeasure in the system under attack. To be able to visualize attacks and countermeasures in the system, geometrical models are used. These helps to see affected area or volume under attack. Other than visibility, models provide calculation of attacks’ or countermeasures’ percentage in the system. In this work, attacks against security vulnerabilities and countermeasures are investigated. Attacks and countermeasures are displayed in 3 dimensional volume model and n-sided polygonal model. In the application, these geometric visualization helps to analyze attacks and countermeasures in the context of system security. In addition, calculation of RORI index provides comparison between countermeasures in a numerical way.
