A Probabilistic Framework for Security Scenarios with Dependent Actions

Barbara Kordy, Marc Pouly, Patrick Schweizer

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

12 Citations (Scopus)
39 Downloads (Pure)

Abstract

This work addresses the growing need of performing meaningful probabilistic analysis of security. We propose a framework that integrates the graphical security modeling technique of attack–defense trees with probabilistic information expressed in terms of Bayesian networks. This allows us to perform probabilistic evaluation of attack–defense scenarios involving dependent actions. To improve the efficiency of our computations, we make use of inference algorithms from Bayesian networks and encoding techniques from constraint reasoning. We discuss the algebraic theory underlying our framework and point out several generalizations which are possible thanks to the use of semiring theory.
Original languageEnglish
Title of host publication11th International Conference on Integrated Formal Methods, IFM 2014
EditorsElvira Albert, Emil Sekereinsk
Place of PublicationBern, Switzerland
PublisherSpringer
Pages256-271
Number of pages16
ISBN (Print)978-3-319-10180-4
DOIs
Publication statusPublished - 9 Sep 2014

Publication series

NameLecture notes in computer science
PublisherSpringer
Volume8739
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Fingerprint

Bayesian networks

Keywords

  • EC Grant Agreement nr.: FP7/2007-2013
  • EC Grant Agreement nr.: FP7/318003

Cite this

Kordy, B., Pouly, M., & Schweizer, P. (2014). A Probabilistic Framework for Security Scenarios with Dependent Actions. In E. Albert, & E. Sekereinsk (Eds.), 11th International Conference on Integrated Formal Methods, IFM 2014 (pp. 256-271). (Lecture notes in computer science; Vol. 8739). Bern, Switzerland: Springer. https://doi.org/10.1007/978-3-319-10181-1_16
Kordy, Barbara ; Pouly, Marc ; Schweizer, Patrick. / A Probabilistic Framework for Security Scenarios with Dependent Actions. 11th International Conference on Integrated Formal Methods, IFM 2014. editor / Elvira Albert ; Emil Sekereinsk. Bern, Switzerland : Springer, 2014. pp. 256-271 (Lecture notes in computer science).
@inproceedings{51304a02809a4f8f888a2815b6de7e0c,
title = "A Probabilistic Framework for Security Scenarios with Dependent Actions",
abstract = "This work addresses the growing need of performing meaningful probabilistic analysis of security. We propose a framework that integrates the graphical security modeling technique of attack–defense trees with probabilistic information expressed in terms of Bayesian networks. This allows us to perform probabilistic evaluation of attack–defense scenarios involving dependent actions. To improve the efficiency of our computations, we make use of inference algorithms from Bayesian networks and encoding techniques from constraint reasoning. We discuss the algebraic theory underlying our framework and point out several generalizations which are possible thanks to the use of semiring theory.",
keywords = "EC Grant Agreement nr.: FP7/2007-2013, EC Grant Agreement nr.: FP7/318003",
author = "Barbara Kordy and Marc Pouly and Patrick Schweizer",
note = "eemcs-eprint-24996",
year = "2014",
month = "9",
day = "9",
doi = "10.1007/978-3-319-10181-1_16",
language = "English",
isbn = "978-3-319-10180-4",
series = "Lecture notes in computer science",
publisher = "Springer",
pages = "256--271",
editor = "Elvira Albert and Emil Sekereinsk",
booktitle = "11th International Conference on Integrated Formal Methods, IFM 2014",

}

Kordy, B, Pouly, M & Schweizer, P 2014, A Probabilistic Framework for Security Scenarios with Dependent Actions. in E Albert & E Sekereinsk (eds), 11th International Conference on Integrated Formal Methods, IFM 2014. Lecture notes in computer science, vol. 8739, Springer, Bern, Switzerland, pp. 256-271. https://doi.org/10.1007/978-3-319-10181-1_16

A Probabilistic Framework for Security Scenarios with Dependent Actions. / Kordy, Barbara; Pouly, Marc; Schweizer, Patrick.

11th International Conference on Integrated Formal Methods, IFM 2014. ed. / Elvira Albert; Emil Sekereinsk. Bern, Switzerland : Springer, 2014. p. 256-271 (Lecture notes in computer science; Vol. 8739).

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

TY - GEN

T1 - A Probabilistic Framework for Security Scenarios with Dependent Actions

AU - Kordy, Barbara

AU - Pouly, Marc

AU - Schweizer, Patrick

N1 - eemcs-eprint-24996

PY - 2014/9/9

Y1 - 2014/9/9

N2 - This work addresses the growing need of performing meaningful probabilistic analysis of security. We propose a framework that integrates the graphical security modeling technique of attack–defense trees with probabilistic information expressed in terms of Bayesian networks. This allows us to perform probabilistic evaluation of attack–defense scenarios involving dependent actions. To improve the efficiency of our computations, we make use of inference algorithms from Bayesian networks and encoding techniques from constraint reasoning. We discuss the algebraic theory underlying our framework and point out several generalizations which are possible thanks to the use of semiring theory.

AB - This work addresses the growing need of performing meaningful probabilistic analysis of security. We propose a framework that integrates the graphical security modeling technique of attack–defense trees with probabilistic information expressed in terms of Bayesian networks. This allows us to perform probabilistic evaluation of attack–defense scenarios involving dependent actions. To improve the efficiency of our computations, we make use of inference algorithms from Bayesian networks and encoding techniques from constraint reasoning. We discuss the algebraic theory underlying our framework and point out several generalizations which are possible thanks to the use of semiring theory.

KW - EC Grant Agreement nr.: FP7/2007-2013

KW - EC Grant Agreement nr.: FP7/318003

U2 - 10.1007/978-3-319-10181-1_16

DO - 10.1007/978-3-319-10181-1_16

M3 - Conference contribution

SN - 978-3-319-10180-4

T3 - Lecture notes in computer science

SP - 256

EP - 271

BT - 11th International Conference on Integrated Formal Methods, IFM 2014

A2 - Albert, Elvira

A2 - Sekereinsk, Emil

PB - Springer

CY - Bern, Switzerland

ER -

Kordy B, Pouly M, Schweizer P. A Probabilistic Framework for Security Scenarios with Dependent Actions. In Albert E, Sekereinsk E, editors, 11th International Conference on Integrated Formal Methods, IFM 2014. Bern, Switzerland: Springer. 2014. p. 256-271. (Lecture notes in computer science). https://doi.org/10.1007/978-3-319-10181-1_16