	US 12,273,368 B1
	Cyber vulnerability assessment tool threat assessment heuristic
Jacquelin A. Speck, Philadelphia, PA (US); Thomas Heverin, Philadelphia, PA (US); Mark Roman, Aston, PA (US); Marcello Balduccini, Wynnewood, PA (US); and Matthew Bosack, Philadelphia, PA (US)
Assigned to The United States of America, as represented by the Secretary of the Navy, Arlington, VA (US)
Filed by The United States of America, as represented by the Secretary of the Navy, Arlington, VA (US)
Filed on Nov. 16, 2023, as Appl. No. 18/510,913.
Application 18/510,913 is a continuation of application No. 16/949,154, filed on Oct. 15, 2020, granted, now 11,863,578.
Claims priority of provisional application 62/915,085, filed on Oct. 15, 2019.
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06N 5/01 (2023.01); H04L 12/40 (2006.01)

CPC H04L 63/1433 (2013.01) [G06N 5/01 (2023.01); H04L 2012/40286 (2013.01)]

10 Claims

1. A computer system capable of implementing a Cyber Vulnerability Assessment Tool (CVAST) for conducting and outputting a cyber risk assessment of a Cyber Physical System (CPS), comprising:

a CPS Information Extraction System for extracting information from a data source;

a CPS Semantic Model for modeling relationships across a plurality of domains;

an Attack Graph Algorithm for analyzing a path from an entry point to a target using an electrical circuit analogy;

a Chain of Impacts Algorithm for evaluating a chain of cyber threat impacts;

a CPS Criticality Algorithm for evaluating a criticality of a system, a subsystem, or a component;

a THRASH Cyber Risk Algorithm for evaluating the cyber risk at component and system levels of the CPS.