English
Related papers

Related papers: Quantitative Questions on Attack-Defense Trees

200 papers

Attack Trees (AT) are a popular formalism for security analysis. They are meant to display an attacker's goal decomposed into attack steps needed to achieve it and compute certain security metrics (e.g., attack cost, probability, and…

Cryptography and Security · Computer Science 2025-07-01 Ítalo Oliveira , Stefano M. Nicoletti , Gal Engelberg , Mattia Fumagalli , Dan Klein , Giancarlo Guizzardi

Machine learning has proved invaluable for a range of different tasks, yet it also proved vulnerable to evasion attacks, i.e., maliciously crafted perturbations of input data designed to force mispredictions. In this paper we propose a…

Machine Learning · Computer Science 2020-07-07 Stefano Calzavara , Pietro Ferrara , Claudio Lucchese

This paper introduces AFDL, a logic-based framework for reasoning about safety, security, and defense interactions in Attack-Fault-Defense Trees, which is a model that captures all safety, security, and defense domains in a single…

Logic in Computer Science · Computer Science 2025-07-31 Reza Soltani , Stefano M. Nicoletti , Milan Lopuhaä-Zwakenberg , Mariëlle Stoelinga

Security risk management can be applied on well-defined or existing systems; in this case, the objective is to identify existing vulnerabilities, assess the risks and provide for the adequate countermeasures. Security risk management can…

Cryptography and Security · Computer Science 2014-04-09 Stéphane Paul

CONTEXT. Attack treesare a recommended threat modeling tool, but there is no established method to compare them. OBJECTIVE. We aim to establish a method to compare "real" attack trees, based on both the structure of the tree itself and the…

Cryptography and Security · Computer Science 2025-03-05 Nathan D. Schiele , Olga Gadyatskaya

Attack Trees (ATs) are a widely used tool for security analysis. ATs can be employed in quantitative security analysis through metrics, which assign a security value to an AT. Many different AT metrics exist, and there exist multiple…

Cryptography and Security · Computer Science 2024-01-19 Milan Lopuhaä-Zwakenberg

With the developing of the attack and defense technology, the cyber environment has been more and more sophisticated. We failed to give an accurate evaluation of network security situation, as we lack a more accurate quantitative evaluation…

Cryptography and Security · Computer Science 2019-02-28 Su Yang , Yuqing Zhang , Chensi Wu

This paper tackles the problems of generating concrete test cases for testing whether an application is vulnerable to attacks, and of checking whether security solutions are correctly implemented. The approach proposed in the paper aims at…

Software Engineering · Computer Science 2020-07-08 Sébastien Salva , Loukmen Regainia

This paper describes our ongoing work on security verification against inference attacks on data trees. We focus on infinite secrecy against inference attacks, which means that attackers cannot narrow down the candidates for the value of…

Cryptography and Security · Computer Science 2013-12-18 Ryo Iwase , Yasunori Ishihara , Toru Fujiwara

Adequate risk assessment of safety critical systems needs to take both safety and security into account, as well as their interaction. A prominent methodology for modeling safety and security are attack-fault trees (AFTs), which combine the…

Cryptography and Security · Computer Science 2024-08-14 Milan Lopuhaä-Zwakenberg

Active cyber defenses based on temporal platform diversity have been proposed as way to make systems more resistant to attacks. These defenses change the properties of the platforms in order to make attacks more complicated. Unfortunately,…

Cryptography and Security · Computer Science 2014-02-03 Kevin M. Carter , Hamed Okhravi , James Riordan

Security is a subject of increasing attention in our actual society in order to protect critical resources from information disclosure, theft or damage. The informal model of attack trees introduced by Schneier, and widespread in the…

Computer Science and Game Theory · Computer Science 2022-09-22 Thomas Brihaye , Sophie Pinchinat , Alexandre Terefenko

Attack trees (ATs) are popular graphical models for reasoning about the security of complex systems, allowing for the quantification of risk through so-called AT metrics. A large variety of different such AT metrics have been proposed, and…

Cryptography and Security · Computer Science 2025-11-19 Benedikt Peterseim , Milan Lopuhaä-Zwakenberg

In this paper, we present a proof theory for attack trees. Attack trees are a well established and useful model for the construction of attacks on systems since they allow a stepwise exploration of high level attacks in application…

Cryptography and Security · Computer Science 2018-05-16 Florian Kammüller

Expressing attack-defence trees in a multi-agent setting allows for studying a new aspect of security scenarios, namely how the number of agents and their task assignment impact the performance, e.g. attack time, of strategies executed by…

Multiagent Systems · Computer Science 2023-10-20 Jaime Arias , Carlos Olarte , Laure Petrucci , Łukasz Maśko , Wojciech Penczek , Teofil Sidoruk

Self-adaptive systems offer several attack surfaces due to the communication via different channels and the different sensors required to observe the environment. Often, attacks cause safety to be compromised as well, making it necessary to…

Cryptography and Security · Computer Science 2023-09-19 Thomas Witte , Raffaela Groner , Alexander Raschke , Matthias Tichy , Irdin Pekaric , Michael Felderer

We propose a holistic methodology for designing automotivesystems that consider security a central concern at every design stage.During the concept design, we model the system architecture and definethe security attributes of its…

The ADTool is free, open source software assisting graphical modeling and quantitative analysis of security, using attack-defense trees. The main features of the ADTool are easy creation, efficient editing, and automated bottom-up…

Cryptography and Security · Computer Science 2013-06-12 Barbara Kordy , Piotr Kordy , Sjouke Mauw , Patrick Schweitzer

Adversarial attacks have emerged as a major challenge to the trustworthy deployment of machine learning models, particularly in computer vision applications. These attacks have a varied level of potency and can be implemented in both white…

Computer Vision and Pattern Recognition · Computer Science 2025-03-04 Nandish Chattopadhyay , Abdul Basit , Bassem Ouni , Muhammad Shafique

A major approach for defending against adversarial attacks aims at controlling only image classifiers to be more resilient, and it does not care about visual objects, such as pandas and cars, in images. This means that visual objects…

Computer Vision and Pattern Recognition · Computer Science 2023-09-06 Rentaro Kataoka , Akisato Kimura , Seiichi Uchida