Time dependent analysis with dynamic counter measure trees

Rajesh Kumar, Dennis Guck, Mariëlle Ida Antoinette Stoelinga

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademic

    32 Downloads (Pure)

    Abstract

    The success of a security attack crucially depends on time: the more time available to the attacker, the higher the probability of a successful attack. Formalisms such as Reliability block diagrams, Reliability graphs and Attack Countermeasure trees provide quantitative information about attack scenarios, but they are provably insufficient to model dependent actions which involve costs, skills, and time. In this presentation, we extend the Attack Countermeasure trees with a notion of time; inspired by the fact that there is a strong correlation between the amount of resources in which the attacker invests (in this case time) and probability that an attacker succeeds. This allows for an effective selection of countermeasures and rank them according to their resource consumption in terms of costs/skills of installing them and effectiveness in preventing an attack.
    Original languageUndefined
    Title of host publicationProceedings of the 13th Workshop on Quantitative Aspects of Programming Languages and Systems (QAPL 2015)
    Place of PublicationFrance
    PublisherINRIA
    Pages1-5
    Number of pages4
    ISBN (Print)not assigned
    Publication statusPublished - Apr 2015

    Publication series

    Name
    PublisherInria

    Keywords

    • EC Grant Agreement nr.: FP7/2007-2013
    • EC Grant Agreement nr.: FP7/318003
    • EWI-25984
    • IR-97667
    • Counter measure trees
    • time dependent analysis
    • METIS-312583
    • Attack trees

    Cite this

    Kumar, R., Guck, D., & Stoelinga, M. I. A. (2015). Time dependent analysis with dynamic counter measure trees. In Proceedings of the 13th Workshop on Quantitative Aspects of Programming Languages and Systems (QAPL 2015) (pp. 1-5). France: INRIA.