Abstract
We present the results of research of limiting adversarial budget in attack games, and, in particular, in the failure-free attack tree models presented by Buldas-Stepanenko in 2012 and improved in 2013 by Buldas and Lenin. In the previously presented models attacker’s budget was assumed to be unlimited. It is natural to assume that the adversarial budget is limited and such an assumption would allow us to model the adversarial decision making more close to the one that might happen in real life. We analyze three atomic cases – the single atomic case, the atomic AND, and the atomic OR. Even these elementary cases become quite complex, at the same time, limiting adversarial budget does not seem to provide any better or more precise results compared to the failure-free models. For the limited model analysis results to be reliable, it is required that the adversarial reward is estimated with high precision, probably not achievable by providing expert estimations for the quantitative annotations on the attack steps, such as the cost or the success probability. It is doubtful that it is reasonable to face this com- plexity, as the failure-free model provides reliable upper bounds, being at the same time computationally less complex.
Original language | English |
---|---|
Title of host publication | Secure IT Systems |
Subtitle of host publication | 19th Nordic Conference, NordSec 2014, Tromsø, Norway, October 15-17, 2014, Proceedings |
Editors | Karin Bernsmed, Simone Fischer-Hübner |
Place of Publication | Berlin |
Publisher | Springer |
Pages | 199-212 |
Number of pages | 14 |
ISBN (Electronic) | 978-3-319-11599-3 |
ISBN (Print) | 978-3-319-11598-6 |
DOIs | |
Publication status | Published - Oct 2014 |
Event | 19th Nordic Conference on Secure IT, NordSec 2014 - Tromsø, Norway Duration: 15 Oct 2014 → 17 Oct 2014 Conference number: 19 http://site.uit.no/nordsec2014/ |
Publication series
Name | Lecture notes in computer science |
---|---|
Publisher | Springer |
Volume | 8788 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | 19th Nordic Conference on Secure IT, NordSec 2014 |
---|---|
Abbreviated title | NordSec |
Country/Territory | Norway |
City | Tromsø |
Period | 15/10/14 → 17/10/14 |
Internet address |
Keywords
- EC Grant Agreement nr.: FP7/2007-2013
- EC Grant Agreement nr.: FP7/318003
- Boolean function
- Attack scenario
- Attack trees
- Initial population size
- Attack step