Fuzzy quantitative attack tree analysis

Thi Kim Nhung Dang; Milan Lopuhaä-Zwakenberg; Mariëlle Stoelinga

doi:10.1007/978-3-031-57259-3_10

Fuzzy quantitative attack tree analysis

Thi Kim Nhung Dang^*, Milan Lopuhaä-Zwakenberg, Mariëlle Stoelinga

^*Corresponding author for this work

Formal Methods and Tools

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

2 Citations (Scopus)

30 Downloads (Pure)

Abstract

Attack trees are important for security, as they help to identify weaknesses and vulnerabilities in a system. Quantitative attack tree analysis supports a number security metrics, which formulate important KPIs such as the shortest, most likely and cheapest attacks. A key bottleneck in quantitative analysis is that the values are usually not known exactly, due to insufficient data and/or lack of knowledge. Fuzzy logic is a prominent framework to handle such uncertain values, with applications in numerous domains. While several studies proposed fuzzy approaches to attack tree analysis, none of them provided a firm definition of fuzzy metric values or generic algorithms for computation of fuzzy metrics. In this work, we define a generic formulation for fuzzy metric values that applies to most quantitative metrics. The resulting metric value is a fuzzy number obtained by following Zadeh’s extension principle, obtained when we equip the basis attack steps, i.e., the leaves of the attack trees, with fuzzy numbers. In addition, we prove a modular decomposition theorem that yields a bottom-up algorithm to efficiently calculate the top fuzzy metric value.

Original language	English
Title of host publication	Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings
Editors	Dirk Beyer, Ana Cavalcanti
Publisher	Springer
Pages	210-231
Number of pages	22
ISBN (Print)	9783031572586
DOIs	https://doi.org/10.1007/978-3-031-57259-3_10
Publication status	Published - 2024
Event	27th International Conference on Fundamental Approaches to Software Engineering, FASE 2024 - Luxembourg City, Luxembourg Duration: 6 Apr 2024 → 11 Apr 2024 Conference number: 27

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	14573 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	27th International Conference on Fundamental Approaches to Software Engineering, FASE 2024
Abbreviated title	FASE
Country/Territory	Luxembourg
City	Luxembourg City
Period	6/04/24 → 11/04/24

Keywords

Attack trees
fuzzy numbers
quantitative analysis

Access to Document

10.1007/978-3-031-57259-3_10Licence: CC BY

ArticleFinal published version, 1.93 MBLicence: CC BY

Cite this

Dang, T. K. N., Lopuhaä-Zwakenberg, M., & Stoelinga, M. (2024). Fuzzy quantitative attack tree analysis. In D. Beyer, & A. Cavalcanti (Eds.), Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings (pp. 210-231). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14573 LNCS). Springer. https://doi.org/10.1007/978-3-031-57259-3_10

Dang, Thi Kim Nhung ; Lopuhaä-Zwakenberg, Milan ; Stoelinga, Mariëlle. / Fuzzy quantitative attack tree analysis. Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings. editor / Dirk Beyer ; Ana Cavalcanti. Springer, 2024. pp. 210-231 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{a5a4afb77444429fb028c941bcb6212d,

title = "Fuzzy quantitative attack tree analysis",

abstract = "Attack trees are important for security, as they help to identify weaknesses and vulnerabilities in a system. Quantitative attack tree analysis supports a number security metrics, which formulate important KPIs such as the shortest, most likely and cheapest attacks. A key bottleneck in quantitative analysis is that the values are usually not known exactly, due to insufficient data and/or lack of knowledge. Fuzzy logic is a prominent framework to handle such uncertain values, with applications in numerous domains. While several studies proposed fuzzy approaches to attack tree analysis, none of them provided a firm definition of fuzzy metric values or generic algorithms for computation of fuzzy metrics. In this work, we define a generic formulation for fuzzy metric values that applies to most quantitative metrics. The resulting metric value is a fuzzy number obtained by following Zadeh{\textquoteright}s extension principle, obtained when we equip the basis attack steps, i.e., the leaves of the attack trees, with fuzzy numbers. In addition, we prove a modular decomposition theorem that yields a bottom-up algorithm to efficiently calculate the top fuzzy metric value.",

keywords = "Attack trees, fuzzy numbers, quantitative analysis",

author = "Dang, {Thi Kim Nhung} and Milan Lopuha{\"a}-Zwakenberg and Mari{\"e}lle Stoelinga",

note = "Publisher Copyright: {\textcopyright} The Author(s) 2024.; 27th International Conference on Fundamental Approaches to Software Engineering, FASE 2024, FASE ; Conference date: 06-04-2024 Through 11-04-2024",

year = "2024",

doi = "10.1007/978-3-031-57259-3_10",

language = "English",

isbn = "9783031572586",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "210--231",

editor = "Dirk Beyer and Ana Cavalcanti",

booktitle = "Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings",

address = "Germany",

}

Dang, TKN, Lopuhaä-Zwakenberg, M & Stoelinga, M 2024, Fuzzy quantitative attack tree analysis. in D Beyer & A Cavalcanti (eds), Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 14573 LNCS, Springer, pp. 210-231, 27th International Conference on Fundamental Approaches to Software Engineering, FASE 2024, Luxembourg City, Luxembourg, 6/04/24. https://doi.org/10.1007/978-3-031-57259-3_10

Fuzzy quantitative attack tree analysis. / Dang, Thi Kim Nhung; Lopuhaä-Zwakenberg, Milan ; Stoelinga, Mariëlle.
Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings. ed. / Dirk Beyer; Ana Cavalcanti. Springer, 2024. p. 210-231 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14573 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Fuzzy quantitative attack tree analysis

AU - Dang, Thi Kim Nhung

AU - Lopuhaä-Zwakenberg, Milan

AU - Stoelinga, Mariëlle

N1 - Conference code: 27

PY - 2024

Y1 - 2024

N2 - Attack trees are important for security, as they help to identify weaknesses and vulnerabilities in a system. Quantitative attack tree analysis supports a number security metrics, which formulate important KPIs such as the shortest, most likely and cheapest attacks. A key bottleneck in quantitative analysis is that the values are usually not known exactly, due to insufficient data and/or lack of knowledge. Fuzzy logic is a prominent framework to handle such uncertain values, with applications in numerous domains. While several studies proposed fuzzy approaches to attack tree analysis, none of them provided a firm definition of fuzzy metric values or generic algorithms for computation of fuzzy metrics. In this work, we define a generic formulation for fuzzy metric values that applies to most quantitative metrics. The resulting metric value is a fuzzy number obtained by following Zadeh’s extension principle, obtained when we equip the basis attack steps, i.e., the leaves of the attack trees, with fuzzy numbers. In addition, we prove a modular decomposition theorem that yields a bottom-up algorithm to efficiently calculate the top fuzzy metric value.

AB - Attack trees are important for security, as they help to identify weaknesses and vulnerabilities in a system. Quantitative attack tree analysis supports a number security metrics, which formulate important KPIs such as the shortest, most likely and cheapest attacks. A key bottleneck in quantitative analysis is that the values are usually not known exactly, due to insufficient data and/or lack of knowledge. Fuzzy logic is a prominent framework to handle such uncertain values, with applications in numerous domains. While several studies proposed fuzzy approaches to attack tree analysis, none of them provided a firm definition of fuzzy metric values or generic algorithms for computation of fuzzy metrics. In this work, we define a generic formulation for fuzzy metric values that applies to most quantitative metrics. The resulting metric value is a fuzzy number obtained by following Zadeh’s extension principle, obtained when we equip the basis attack steps, i.e., the leaves of the attack trees, with fuzzy numbers. In addition, we prove a modular decomposition theorem that yields a bottom-up algorithm to efficiently calculate the top fuzzy metric value.

KW - Attack trees

KW - fuzzy numbers

KW - quantitative analysis

UR - http://www.scopus.com/inward/record.url?scp=85190686597&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-57259-3_10

DO - 10.1007/978-3-031-57259-3_10

M3 - Conference contribution

AN - SCOPUS:85190686597

SN - 9783031572586

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 210

EP - 231

BT - Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings

A2 - Beyer, Dirk

A2 - Cavalcanti, Ana

PB - Springer

T2 - 27th International Conference on Fundamental Approaches to Software Engineering, FASE 2024

Y2 - 6 April 2024 through 11 April 2024

ER -

Dang TKN, Lopuhaä-Zwakenberg M , Stoelinga M. Fuzzy quantitative attack tree analysis. In Beyer D, Cavalcanti A, editors, Fundamental Approaches to Software Engineering - 27th International Conference, FASE 2024, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2024, Proceedings. Springer. 2024. p. 210-231. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). Epub 2024 Apr 6. doi: 10.1007/978-3-031-57259-3_10

Fuzzy quantitative attack tree analysis

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this