Parametric Analyses of Attack-Fault Trees

Étienne André, Didier Lime, Mathias Ramparison, Mariëlle Stoelinga

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

10 Citations (Scopus)
119 Downloads (Pure)

Abstract

Risk assessment of cyber-physical systems, such as power plants, connected devices and IT-infrastructures has always been challenging: safety (i.e., absence of unintentional failures) and security (i. e., no disruptions due to attackers) are conditions that must be guaranteed. One of the traditional tools used to help considering these problems is attack trees, a tree-based formalism inspired by fault trees, a well-known formalism used in safety engineering. In this paper we define and implement the translation of attack-fault trees (AFTs) to a new extension of timed automata, called parametric weighted timed automata. This allows us to parametrize constants such as time and discrete costs in an AFT and then, using the model-checker IMITATOR, to compute the set of parameter values such that a successful attack is possible. Using the different sets of parameter values computed, different attack and fault scenarios can be deduced depending on the budget, time or computation power of the attacker, providing helpful data to select the most efficient counter-measure.

Original languageEnglish
Title of host publicationProceedings - 2019 19th International Conference on Application of Concurrency to System Design, ACSD 2019
Place of PublicationPiscataway, NJ
PublisherIEEE
Pages33-42
Number of pages10
ISBN (Electronic)978-1-7281-3843-5
ISBN (Print)978-1-7281-3844-2
DOIs
Publication statusPublished - Jun 2019
Event19th International Conference on Application of Concurrency to System Design, ACSD 2019 - Aachen, Germany
Duration: 23 Jun 201926 Jun 2019
Conference number: 19

Publication series

NameProceedings - International Conference on Application of Concurrency to System Design, ACSD
PublisherIEEE
Volume2019
ISSN (Print)1550-4808
ISSN (Electronic)2374-8567

Conference

Conference19th International Conference on Application of Concurrency to System Design, ACSD 2019
Abbreviated titleACSD
Country/TerritoryGermany
CityAachen
Period23/06/1926/06/19

Keywords

  • Attack-fault trees
  • Imitator
  • Parametric timed automata
  • Security

Fingerprint

Dive into the research topics of 'Parametric Analyses of Attack-Fault Trees'. Together they form a unique fingerprint.

Cite this