Attack Trees: A Notion of Missing Attacks - Archive ouverte HAL Accéder directement au contenu
Communication Dans Un Congrès Année : 2019

Attack Trees: A Notion of Missing Attacks

Résumé

Attack trees are widely used for security modeling and risk analysis. Classically, an attack tree combines possible actions of the attacker into attacks. In most existing approaches, an attack tree represents generic ways of attacking a system, but without taking any specific system or its configuration into account. This means that such a generic attack tree may contain attacks that are not applicable to the analyzed system, and also that a given system could enable some attacks that the attack tree did not capture. To overcome this problem, we extend the attack tree setting with a model of the analyzed system, allowing us to introduce precise path semantics of an attack tree and to define missing attacks. We investigate the missing attack existence problem and show how to solve it by calls to the NP oracle that answers the trace attack tree membership problem; the latter problem has been implemented and is available as an open source prototype.
Fichier non déposé

Dates et versions

hal-02533750 , version 1 (06-04-2020)

Identifiants

Citer

Sophie Pinchinat, Barbara Fila, Florence Florence Wacheux, Yann Thierry-Mieg. Attack Trees: A Notion of Missing Attacks. GraMSec 2019 - 6th International Workshop on Graphical Models for Security, Jun 2019, Hoboken, NJ, United States. pp.23-49, ⟨10.1007/978-3-030-36537-0_3⟩. ⟨hal-02533750⟩
293 Consultations
0 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More