Hackers vs. Security: Attack-Defence Trees as Asynchronous Multi-agent Systems

Jaime Arias, Carlos E. Budde*, Wojciech Penczek, Laure Petrucci, Teofil Sidoruk, Mariëlle Stoelinga

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingChapterAcademicpeer-review

Abstract

Attack-Defence Trees (ADTrees) are a well-suited formalism to assess possible attacks to systems and the efficiency of counter-measures. This paper extends the available ADTree constructs with reactive patterns that cover further security scenarios, and equips all constructs with attributes such as time and cost to allow for quantitative analyses. We model ADTrees as (an extension of) Asynchronous Multi-Agents Systems: EAMAS. The ADTree–EAMAS transformation allows us to quantify the impact of different agents configurations on metrics such as attack time. Using EAMAS also permits parametric verification: we derive constraints for property satisfaction, e.g. the maximum time a defence can take to block an attack. Our approach is exercised on several case studies using the Uppaal and IMITATOR tools. We developed the open-source tool adt2amas implementing our transformation.
Original languageEnglish
Title of host publicationFormal Methods and Software Engineering - 22nd International Conference on Formal Engineering Methods, ICFEM 2020, Proceedings
EditorsSW. Lin, Z. Hou, B. Mahoney
PublisherSpringer
Pages3-19
Number of pages17
ISBN (Electronic)978-3-030-63406-3
ISBN (Print)978-3-030-63405-6
DOIs
Publication statusPublished - 19 Dec 2020
Event22nd International Conference on Formal Engineering Methods, ICFEM 2020 - National University of Singapore, Singapore, Singapore
Duration: 1 Mar 20213 Mar 2021
Conference number: 22
https://formal-analysis.com/icfem/2020/

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume12531 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference22nd International Conference on Formal Engineering Methods, ICFEM 2020
Abbreviated titleICFEM
CountrySingapore
CitySingapore
Period1/03/213/03/21
Internet address

Fingerprint Dive into the research topics of 'Hackers vs. Security: Attack-Defence Trees as Asynchronous Multi-agent Systems'. Together they form a unique fingerprint.

Cite this