Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Publications by: Anoop Singhal (Fed)

Displaying 76 - 100 of 131

Inferring the Stealthy Bridges between Enterprise Network Islands in Cloud Using Cross-Layer Bayesian Networks

October 29, 2015

Author(s)

Anoop Singhal, Xiaoyan Sun, Jun Dai, Peng Liu

Enterprise networks are migrating to the public cloud to acquire computing resources for a number of promising benefits in terms of efficiency, expense, and flexibility. Except some public services, the enterpise network islands in cloud are expected to be

Poster:A Logic Based Network Forensics Model for Evidence Analysis

October 15, 2015

Author(s)

Anoop Singhal, Changwei Liu, Duminda Wijesekera

Modern-day attackers tend to use sophisticated multi-stage/multi-host attack techniques and anti-forensics tools to cover their attack traces. Due to the current limitations of intrusion detection and forensic analysis tools, reconstructing attack

Who Touched my Mission: Towards Probabilistic Mission Impact Assessment

October 12, 2015

Author(s)

Xiaoyan Sun, Anoop Singhal, Peng Liu

Cyber attacks inevitably generate impacts towards relevant missions. However, concrete methods to accurately evaluate such impacts are rare. In this paper, we propose a probabilistic approach based on Bayesian networks for quantitative mission impact

A Logic Based Network Forensics Model for Evidence Analysis

January 28, 2015

Author(s)

Changwei Liu, Anoop Singhal, Duminda Wijesekera

Many attackers tend to use sophisticated multi-stage and/or multi-host attack techniques and anti-forensic tools to cover their traces. Due to the limitations of current intrusion detection and network forensic analysis tools, reconstructing attack

Metrics of Security

December 15, 2014

Author(s)

Yi Cheng, Julia Deng, Jason Li, Scott DeLoach, Anoop Singhal, Xinming Ou

Discussion of challenges and ways of improving Cyber Situational Awareness dominated our previous chapters. However, we have not yet touched on how to quantify any improvement we might achieve. Indeed, to get an accurate assessment of network security and

Modeling Network Diversity for Evaluating the Robustness of Networks against Zero-Day Attacks

September 11, 2014

Author(s)

Lingyu Wang, Meng Zhang, Sushil Jajodia, Anoop Singhal, M. Albanese

The interest in diversity as a security mechanism has recently been revived in various applications, such as Moving Target Defense (MTD), resisting worms in sensor networks, and improving the robustness of network routing. However, most existing efforts on

A Model Towards Using Evidence from Security Events for Network Attack Analysis

April 27, 2014

Author(s)

Changwei Liu, Anoop Singhal, Duminda Wijesekera

Constructing an efficient and accurate model from security events to determine an attack scenario for an enterprise network is challenging. In this paper, we discuss how to use evidence obtained from security events to construct an attack scenario and

k-Zero Day Safety: A Network Security Metric for Measuring the Risk of Unknown Vulnerabilities

January 31, 2014

Author(s)

Lingyu Wang, Sushil Jajodia, Anoop Singhal, Pengsu Cheng, Steven Noel

By enabling a direct comparison of different security solutions with respect to their relative effectiveness, a network security metric may provide quantifiable evidences to assist security practitioners in securing computer networks. However, research on

Creating Integrated Evidence Graphs for Network Forensics

October 18, 2013

Author(s)

Changwei Liu, Anoop Singhal, Duminda Wijesekera

Evidence Graphs model network intrusion evidence and their dependencies, which helps network forensics analyst collate and visualize dependencies. In particular, probabilistic evidence graph provide a way to link probabilities associated with different

Aggregating Vulnerability Metrics in Enterprise Networks using Attack Graphs

September 20, 2013

Author(s)

John Homer, Su Zhang, Xinming Ou, David Schmidt, Yanhui Du, S. Raj Rajagopalan, Anoop Singhal

Quantifying security risk is an important and yet difficult task in enterprise network security man- agement. While metrics exist for individual software vulnerabilities, there is currently no standard way of aggregating such metrics. We present a model

Investigating the Application of Moving Target Defenses to Network Security

August 15, 2013

Author(s)

Rui Zhuang, Su Zhang, Alex Bardas, Scott DeLoach, Xinming Ou, Anoop Singhal

This paper presents a preliminary design for a moving-target defense (MTD) for computer networks to combat an attacker's asymmetric advantage. The MTD system reasons over a set of abstract models that capture the network's configuration and its operational

An Efficient Approach to Assessing the Risk of Zero-Day Vulnerabilities

July 31, 2013

Author(s)

M. Albanese, Sushil Jajodia, Anoop Singhal, Lingyu Wang

Computer systems are vulnerable to both known and zero-day attacks. Although known attack patterns can be easily modeled, thus enabling the definition of suitable hardening strategies, handling zero-day vulnerabilities is inherently difficult due to their

VULCAN: Vulnerability Assessment Framework for Cloud Computing

June 20, 2013

Author(s)

Patrick Kamongi, Srujan Kotikela, Krishna Kavi, Mahadevan Gomathisankaran, Anoop Singhal

Assessing security of software services on Cloud is complex because the security depends on the vulnerability of infrastructure, platform and the software services. In many systems, the platform or the infrastructure on which the software will actually run