Effective Analysis of Attack Trees: A Model-Driven Approach

Rajesh Kumar*, Stefano Schivo, Enno Ruijters, Bugra Mehmet Yildiz, David Huistra, Jacco Brandt, Arend Rensink, Mariëlle Stoelinga

*Corresponding author for this work

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    18 Citations (Scopus)
    395 Downloads (Pure)


    Attack trees (ATs) are a popular formalism for security analysis, and numerous variations and tools have been developed around them. These were mostly developed independently, and offer little interoperability or ability to combine various AT features.

    We present ATTop, a software bridging tool that enables automated analysis of ATs using a model-driven engineering approach. ATTop fulfills two purposes: 1. It facilitates interoperation between several AT analysis methodologies and resulting tools (e.g., ATE, ATCalc, ADTool 2.0), 2. it can perform a comprehensive analysis of attack trees by translating them into timed automata and analyzing them using the popular model checker Uppaal, and translating the analysis results back to the original ATs. Technically, our approach uses various metamodels to provide a unified description of AT variants. Based on these metamodels, we perform model transformations that allow to apply various analysis methods to an AT and trace the results back to the AT domain. We illustrate our approach on the basis of a case study from the AT literature.
    Original languageEnglish
    Title of host publicationProceedings of the 21st International Conference on Fundamental Approaches to Software Engineering (FASE 2018)
    EditorsAlessandra Russo, Andy Schürr
    Number of pages18
    ISBN (Electronic)978-3-319-89363-1
    ISBN (Print)978-3-319-89362-4
    Publication statusPublished - Apr 2018
    Event21st International Conference on Fundamental Approaches to Software Engineering 2018 - Makedonia Palace, Thessaloniki, Greece
    Duration: 14 Apr 201820 Apr 2018
    Conference number: 21

    Publication series

    NameLecture Notes in Computer Science
    ISSN (Print)0302-9743


    Conference21st International Conference on Fundamental Approaches to Software Engineering 2018
    Abbreviated titleFASE 2018
    Internet address


    Dive into the research topics of 'Effective Analysis of Attack Trees: A Model-Driven Approach'. Together they form a unique fingerprint.

    Cite this