Deakin University
Browse

Refinement-aware generation of attack trees

Version 2 2024-06-04, 14:37
Version 1 2018-04-16, 16:53
conference contribution
posted on 2024-06-04, 14:37 authored by O Gadyatskaya, R Jhawar, S Mauw, R Trujillo-Rasua, TAC Willemse
© Springer International Publishing AG 2017. Attack trees allow a security analyst to obtain an overview of the potential vulnerabilities of a system. Due to their refinement structure, attack trees support the analyst in understanding the system vulnerabilities at various levels of abstraction. However, contrary to manually synthesized attack trees, automatically generated attack trees are often not refinement-aware, making subsequent human processing much harder. The generation of attack trees in which the refined nodes correspond to semantically relevant levels of abstraction is still an open question. In this paper, we formulate the attack-tree generation problem and propose a methodology to, given a system model, generate attack trees with meaningful levels of abstraction.

History

Pagination

164-179

Location

Oslo, Norway

Start date

2017-09-14

End date

2017-09-15

ISSN

0302-9743

eISSN

1611-3349

ISBN-13

9783319680620

Language

eng

Publication classification

E Conference publication, E1.1 Full written paper - refereed

Copyright notice

2017, Springer

Editor/Contributor(s)

Livraga G, Mitchell C

Title of proceedings

STM 2017 : Security and trust management : 13th International Workshop, STM 2017, Oslo, Norway, September 14-15, 2017, Proceedings

Event

Security and Trust Management. Workshop (2017 : 13th : Oslo, Norway)

Publisher

Springer

Place of publication

Berlin, Germany

Series

Lecture notes in computer science, 0302-9743 ; 10547

Usage metrics

    Research Publications

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC