Cybersecurity Modeling and Simulation by Ivan Taylor
Modeling and simulation (M&S) represent the structure and behavior of a system with a focus on what the system is and does to provide value-delivery. Security M&S represents a risk to the system that may negatively impact value-delivery and what to do to address those risks. The chronology is to first model the system, then risks to the system, and then model security to mitigate the risks to assure value-delivery. Modeling security separate from that which it safeguards has no meaning. This presentation introduces M&S concepts, including purpose, approaches, and that which one models; plus, an introduction to modeling risk, threats, and security. There are examples of modeling cybersecurity operations for optimization and applying conditional probabilities to help manage uncertainty for finding threats in the operating environment.