| CPC G06F 21/577 (2013.01) [G06F 2221/034 (2013.01)] | 28 Claims |
|
1. A method for model-based risk assessment of a computerized network, the method comprises:
obtaining a model of the computerized network, the model comprising risk assessments building blocks that represent (a) risk related dependencies between members of sets of assets of the computerized network, and (b) probabilities of occurrence of the risk related dependencies;
simulating, for at least some of the assets of the computerized network, and based on at least a portion of the model, one or more attacks to provide one or more model-based risk assessment results; wherein the risk assessments building blocks comprise exposure building blocks related to at least some of the sets of the assets; wherein an exposure building block related to a set of assets describes one or more source assets of the set, a target asset of the set, and an exposure probability related to the set of assets; wherein the exposure probability is calculated based on (i) an assumption that each one of the one or more source assets of the set is compromised, and (ii) on protection statements; and
ranking remediation tasks for remediating computerized network vulnerabilities according to an impact of the remediations tasks on the one or more model-based risk assessment results.
|