Refinement-aware generation of attack trees
Version 2 2024-06-04, 14:37
Version 1 2018-04-16, 16:53
conference contribution
posted on 2024-06-04, 14:37 authored by O Gadyatskaya, R Jhawar, S Mauw, R Trujillo-Rasua, TAC Willemse© Springer International Publishing AG 2017. Attack trees allow a security analyst to obtain an overview of the potential vulnerabilities of a system. Due to their refinement structure, attack trees support the analyst in understanding the system vulnerabilities at various levels of abstraction. However, contrary to manually synthesized attack trees, automatically generated attack trees are often not refinement-aware, making subsequent human processing much harder. The generation of attack trees in which the refined nodes correspond to semantically relevant levels of abstraction is still an open question. In this paper, we formulate the attack-tree generation problem and propose a methodology to, given a system model, generate attack trees with meaningful levels of abstraction.
History
Pagination
164-179Location
Oslo, NorwayPublisher DOI
Start date
2017-09-14End date
2017-09-15ISSN
0302-9743eISSN
1611-3349ISBN-13
9783319680620Language
engPublication classification
E Conference publication, E1.1 Full written paper - refereedCopyright notice
2017, SpringerEditor/Contributor(s)
Livraga G, Mitchell CTitle of proceedings
STM 2017 : Security and trust management : 13th International Workshop, STM 2017, Oslo, Norway, September 14-15, 2017, ProceedingsEvent
Security and Trust Management. Workshop (2017 : 13th : Oslo, Norway)Publisher
SpringerPlace of publication
Berlin, GermanySeries
Lecture notes in computer science, 0302-9743 ; 10547Usage metrics
Categories
No categories selectedLicence
Exports
RefWorks
BibTeX
Ref. manager
Endnote
DataCite
NLM
DC