Abstract
As the critical systems we rely on every day, such as nuclear power plants and airplanes, become ever more complex, the need to rigorously verify the safety and dependability of these systems is becoming very clear. Furthermore, deliberate attacks have become a prominent cause of concern for safety and reliability.
One of the most prominent techniques for analyzing such systems is fault tree analysis (FTA), and a whole forest of variants, extensions, and analysis tools have been developed. In the security field, FTA was the inspiration for attack trees, used to analyze systems for vulnerability to malicious attacks. These formalisms are rarely compatible, making it difficult to exploit their different strengths in analyzing the same system.
The key contribution of this paper is a meta-model describing many varieties of fault and attack trees, and well as combined attack-fault trees. We provide translations to and from different formalisms, as well as our own analysis engine for combined models. We demonstrate this framework on three case studies.
Original language | English |
---|---|
Title of host publication | 2017 Annual Reliability and Maintainability Symposium (RAMS) |
Publisher | IEEE |
Number of pages | 7 |
ISBN (Electronic) | 978-1-5090-5284-4 |
ISBN (Print) | 978-1-5090-5285-1 |
DOIs | |
Publication status | Published - 23 Jan 2017 |
Event | 63rd Annual Reliabliity and Maintainability Symposium, RAMS 2017 - Orlando, United States Duration: 23 Jan 2017 → 26 Jan 2017 Conference number: 63 |
Conference
Conference | 63rd Annual Reliabliity and Maintainability Symposium, RAMS 2017 |
---|---|
Abbreviated title | RAMS |
Country/Territory | United States |
City | Orlando |
Period | 23/01/17 → 26/01/17 |
Keywords
- EWI-27223
- Metamodelling
- Fault Tree Analysis
- Attack-fault trees
- IR-101865
- EC Grant Agreement nr.: FP7/318003