Soufiane Aksadi
A Decision Support System for Optimal Security Posture via Defensive Measures Prioritization.
Rel. Cataldo Basile, Francesco Settanni, Gabriele Gatti. Politecnico di Torino, Corso di laurea magistrale in Ingegneria Informatica (Computer Engineering), 2025
![[img]](https://webthesis.biblio.polito.it/secure/style/images/fileicons/application_pdf.png)
|
PDF (Tesi_di_laurea)
- Tesi
Accesso riservato a: Solo utenti staff fino al 25 Luglio 2026 (data di embargo). Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (4MB) |
| Abstract: |
This thesis addresses the critical challenge of adopting an optimal security posture in an increasingly complex threat environment. As organizations face sophisticated cyber threats across evolving technology landscapes, security practitioners require systematic approaches for prioritizing defensive measures and selecting appropriate security mechanisms beyond manual selection methods. To address this gap, this research introduces an innovative framework that leverages the MITRE D3FEND ontology and MITRE ATT&CK framework to provide recommendations and guidance aimed at improving security posture against a given threat landscape. Through case studies focused on ransomware and cloud-native infrastructures, the research demonstrates that the framework effectively identifies prioritized defensive measures between distinct attack vectors while maintaining defensive coverage across the threat spectrum. Comparative analysis confirms the ability of the system to adapt recommendations based on unique scenario characteristics while maintaining coverage of foundational security controls. Overall, this work represents an advancement in threat-informed defense planning for organizations facing evolving cyber threats in increasingly complex environments. |
|---|---|
| Relatori: | Cataldo Basile, Francesco Settanni, Gabriele Gatti |
| Anno accademico: | 2024/25 |
| Tipo di pubblicazione: | Elettronica |
| Numero di pagine: | 104 |
| Soggetti: | |
| Corso di laurea: | Corso di laurea magistrale in Ingegneria Informatica (Computer Engineering) |
| Classe di laurea: | Nuovo ordinamento > Laurea magistrale > LM-32 - INGEGNERIA INFORMATICA |
| Aziende collaboratrici: | NON SPECIFICATO |
| URI: | http://webthesis.biblio.polito.it/id/eprint/36366 |
 |
Modifica (riservato agli operatori) |
Licenza Creative Commons - Attribuzione 3.0 Italia