Safety-Security Analysis via Attack-Fault-Defense Trees: Semantics and Cut Set Metrics

Reza Soltani*, Milan Lopuhaä-Zwakenberg, Mariëlle Stoelinga

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

Abstract

Cyber-physical systems such as the advanced smart grid have a dynamic interaction between security, safety, and defense. Therefore, we need risk management strategies that take all three into account. This paper introduces a novel framework that seamlessly combines attack trees, fault trees, and defense mechanisms: Attack-Fault-Defense Trees (AFDTs). This model creates a common language using an easily understood visual aid designed for experts from various backgrounds, thereby accelerating multidisciplinary collaboration. We define the semantics and cut set metrics for AFDTs and explore how qualitative analysis can be done through cut set analysis. Furthermore, we provide a case study that revolves around a Gridshield lab, which is a set of remotely connected charging stations at the University of Twente campus, to demonstrate the practical implementation of AFDT analysis.
Original languageEnglish
Title of host publicationComputer Safety, Reliability, and Security
Subtitle of host publication43rd International Conference, SAFECOMP 2024, Florence, Italy, September 18–20, 2024, Proceedings
EditorsAndrea Ceccarelli, Mario Trapp, Andrea Bondavalli, Friedemann Bitsch
Place of PublicationCham
PublisherSpringer
Pages218-232
Number of pages15
ISBN (Electronic)978-3-031-68606-1
ISBN (Print)978-3-031-68605-4
DOIs
Publication statusPublished - 9 Sept 2024
Event43rd International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2024 - Florence, Italy
Duration: 17 Sept 202420 Sept 2024
Conference number: 43

Publication series

Name Lecture Notes in Computer Science
PublisherSpringer
Volume14988
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference43rd International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2024
Abbreviated titleSAFECOMP 2024
Country/TerritoryItaly
CityFlorence
Period17/09/2420/09/24

Keywords

  • 2024 OA procedure
  • Smartgrid
  • Attack-Fault Tree
  • Safety
  • Attack-Defense Tree
  • Security

Fingerprint

Dive into the research topics of 'Safety-Security Analysis via Attack-Fault-Defense Trees: Semantics and Cut Set Metrics'. Together they form a unique fingerprint.

Cite this