Pareto Efficient Solution of Attack-Defence Trees

Zaruhi Aslanyan, Flemming Nielson

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    31 Citations (Scopus)

    Abstract

    Attack-defence trees are a promising approach for representing threat scenarios and possible countermeasures in a concise and intuitive manner. An attack-defence tree describes the interaction between an attacker and a defender, and is evaluated by assigning parameters to the nodes, such as probability or cost of attacks and defences. In case of multiple parameters most analytical methods optimise one parameter at a time, e.g., minimise cost or maximise probability of an attack. Such methods may lead to sub-optimal solutions when optimising conflicting parameters, e.g., minimising cost while maximising probability. In order to tackle this challenge, we devise automated techniques that optimise all parameters at once. Moreover, in the case of conflicting parameters our techniques compute the set of all optimal solutions, defined in terms of Pareto efficiency. The developments are carried out on a new and general formalism for attack-defence trees.
    Original languageEnglish
    Title of host publication4th International Conference on Principles of Security and Trust, POST 2015
    EditorsRiccardo Focardi, Andrew Myers
    Place of PublicationBerlin, Heidelberg
    PublisherSpringer
    Pages95-114
    Number of pages20
    ISBN (Electronic)978-3-662-46666-7
    ISBN (Print)978-3-662-46665-0
    DOIs
    Publication statusPublished - Apr 2015
    Event4th International Conference on Principles of Security and Trust, POST 2015 - London, United Kingdom
    Duration: 11 Apr 201518 Apr 2015
    Conference number: 4

    Publication series

    NameLecture notes in computer science
    PublisherSpringer Verlag
    Volume9036
    ISSN (Print)0302-9743
    ISSN (Electronic)1611-3349

    Conference

    Conference4th International Conference on Principles of Security and Trust, POST 2015
    Abbreviated titlePOST
    CountryUnited Kingdom
    CityLondon
    Period11/04/1518/04/15

    Keywords

    • EC Grant Agreement nr.: FP7/2007-2013
    • EC Grant Agreement nr.: FP7/318003
    • Multiple criteria
    • Countermeasures
    • Pareto efficiency
    • Attack trees
    • Attack-defence trees
    • Security assessment

    Fingerprint Dive into the research topics of 'Pareto Efficient Solution of Attack-Defence Trees'. Together they form a unique fingerprint.

    Cite this