Abstract
The success of a security attack crucially depends on the resources available to an attacker: time, budget, skill level, and risk appetite. Insight in these dependencies and the most vulnerable system parts is key to providing effective counter measures.
This paper considers attack trees, one of the most prominent security formalisms for threat analysis. We provide an effective way to compute the resources needed for a successful attack, as well as the associated attack paths. These paths provide the optimal ways, from the perspective of the attacker, to attack the system, and provide a ranking of the most vulnerable system parts.
By exploiting the priced timed automaton model checker Uppaal CORA, we realize important advantages over earlier attack tree analysis methods: we can handle more complex gates, temporal dependencies between attack steps, shared subtrees, and realistic, multi-parametric cost structures. Furthermore, due to its compositionality, our approach is flexible and easy to extend.
We illustrate our approach with several standard case studies from the literature, showing that our method agrees with existing analyses of these cases, and can incorporate additional data, leading to more informative results.
Original language | Undefined |
---|---|
Title of host publication | Proceedings of the 13th International Conference on Formal Modeling and Analysis of Timed Systems (FORMATS 2015) |
Editors | Sriram Sankaranarayanan, Enrico Vicario |
Place of Publication | Zurich |
Publisher | Springer |
Pages | 156-171 |
Number of pages | 16 |
ISBN (Print) | 978-3-319-22974-4 |
DOIs | |
Publication status | Published - Sep 2015 |
Event | 13th International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2015 - Universidad Complutense de Madrid, Madrid, Spain Duration: 2 Sep 2015 → 4 Sep 2015 Conference number: 13 http://formats2015.unifi.it/ |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Publisher | Springer International Publishing |
Volume | 9268 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | 13th International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2015 |
---|---|
Abbreviated title | FORMATS |
Country | Spain |
City | Madrid |
Period | 2/09/15 → 4/09/15 |
Internet address |
Keywords
- EC Grant Agreement nr.: FP7/318003
- EWI-25869
- FMT-MC: MODEL CHECKING
- EC Grant Agreement nr.: FP7/2007-2013
- Model Checking
- IR-97025
- Socio-technical security
- Case Studies
- Attack Tree
- Attacker Profile
- METIS-312524
- Uppaal Cora