English
Related papers

Related papers: Attack Tree Generation via Process Mining

200 papers

Attack graphs are a tool for analyzing security vulnerabilities that capture different and prospective attacks on a system. As a threat modeling tool, it shows possible paths that an attacker can exploit to achieve a particular goal.…

Graphical security models constitute a well-known, user-friendly way to represent the security of a system. These kinds of models are used by security experts to identify vulnerabilities and assess the security of a system. The manual…

Cryptography and Security · Computer Science 2023-09-26 Alyzia-Maria Konsta , Beatrice Spiga , Alberto Lluch Lafuente , Nicola Dragoni

Attack trees are a popular way to represent and evaluate potential security threats on systems or infrastructures. The goal of this work is to provide a framework allowing to express and check whether an attack tree is consistent with the…

Cryptography and Security · Computer Science 2018-02-12 Maxime Audinot , Sophie Pinchinat , Barbara Kordy

Attack trees and attack graphs are both common graphical threat models used by organizations to better understand possible cybersecurity threats. These models have been primarily seen as separate entities, to be used and researched in…

Cryptography and Security · Computer Science 2021-10-07 Nathan Daniel Schiele , Olga Gadyatskaya

Joint safety and security analysis of cyber-physical systems is a necessary step to correctly capture inter-dependencies between these properties. Attack-Fault Trees represent a combination of dynamic Fault Trees and Attack Trees and can be…

Cryptography and Security · Computer Science 2023-09-19 Raffaela Groner , Thomas Witte , Alexander Raschke , Sophie Hirn , Irdin Pekaric , Markus Frick , Matthias Tichy , Michael Felderer

Domain-specific quantitative modeling and analysis approaches are fundamental in scenarios in which qualitative approaches are inappropriate or unfeasible. In this paper, we present a tool-supported approach to quantitative graph-based…

Cryptography and Security · Computer Science 2021-01-22 Maurice H. ter Beek , Axel Legay , Alberto Lluch Lafuente , Andrea Vandin

Security risk management can be applied on well-defined or existing systems; in this case, the objective is to identify existing vulnerabilities, assess the risks and provide for the adequate countermeasures. Security risk management can…

Cryptography and Security · Computer Science 2014-04-09 Stéphane Paul

Attack-defense trees are a novel methodology for graphical security modeling and assessment. The methodology includes visual, intuitive tree models whose analysis is supported by a rigorous mathematical formalism. Both, the intuitive and…

Cryptography and Security · Computer Science 2012-10-31 Barbara Kordy , Sjouke Mauw , Patrick Schweitzer

Attack trees are considered a useful tool for security modelling because they support qualitative as well as quantitative analysis. The quantitative approach is based on values associated to each node in the tree, expressing, for instance,…

Cryptography and Security · Computer Science 2019-01-11 Ahto Buldas , Olga Gadyatskaya , Aleksandr Lenin , Sjouke Mauw , Rolando Trujillo-Rasua

Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is, such as the most likely…

Cryptography and Security · Computer Science 2022-09-29 Carlos E. Budde , Mariëlle Stoelinga

Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is; typical metrics being…

Cryptography and Security · Computer Science 2022-12-13 Milan Lopuhaä-Zwakenberg , Carlos E. Budde , Mariëlle Stoelinga

This article addresses the problem of automatically generating attack trees that soundly and clearly describe the ways the system can be attacked. Soundness means that the attacks displayed by the attack tree are indeed attacks in the…

Cryptography and Security · Computer Science 2024-07-11 Olga Gadyatskaya , Sjouke Mauw , Rolando Trujillo-Rasuac , Tim A. C. Willemse

Recently, the evolution of deep learning has promoted the application of machine learning (ML) to various systems. However, there are ML systems, such as autonomous vehicles, that cause critical damage when they misclassify. Conversely,…

Cryptography and Security · Computer Science 2023-12-29 Yuki Yamaguchi , Toshiaki Aoki

Attack Trees (ATs) are a widely used tool for security analysis. ATs can be employed in quantitative security analysis through metrics, which assign a security value to an AT. Many different AT metrics exist, and there exist multiple…

Cryptography and Security · Computer Science 2024-01-19 Milan Lopuhaä-Zwakenberg

Recently security researchers have started to look into automated generation of attack trees from socio-technical system models. The obvious next step in this trend of automated risk analysis is automating the selection of security controls…

Cryptography and Security · Computer Science 2015-09-03 Olga Gadyatskaya

Ranking risks and countermeasures is one of the foremost goals of quantitative security analysis. One of the popular frameworks, used also in industrial practice, for this task are attack-defense trees. Standard quantitative analyses…

Cryptography and Security · Computer Science 2024-09-19 Florian Dorfhuber , Julia Eisentraut , Katharina Klioba , Jan Kretinsky

Risk assessment of cyber-physical systems, such as power plants, connected devices and IT-infrastructures has always been challenging: safety (i.e. absence of unintentional failures) and security (i.e. no disruptions due to attackers) are…

Cryptography and Security · Computer Science 2019-05-10 Étienne André , Didier Lime , Mathias Ramparison , Mariëlle Stoelinga

With the advancement of IoT technology, many electronic devices are interconnected through networks, communicating with each other and performing specific roles. However, as numerous devices join networks, the threat of cyberattacks also…

Cryptography and Security · Computer Science 2023-11-28 Sangbeom Park , Jaesung Lee , Jeong Do Yoo , Min Geun Song , Hyosun Lee , Jaewoong Choi , Chaeyeon Sagong , Huy Kang Kim

Machine learning has proved invaluable for a range of different tasks, yet it also proved vulnerable to evasion attacks, i.e., maliciously crafted perturbations of input data designed to force mispredictions. In this paper we propose a…

Machine Learning · Computer Science 2020-07-07 Stefano Calzavara , Pietro Ferrara , Claudio Lucchese

Attack Trees (AT) are a popular formalism for security analysis. They are meant to display an attacker's goal decomposed into attack steps needed to achieve it and compute certain security metrics (e.g., attack cost, probability, and…

Cryptography and Security · Computer Science 2025-07-01 Ítalo Oliveira , Stefano M. Nicoletti , Gal Engelberg , Mattia Fumagalli , Dan Klein , Giancarlo Guizzardi
‹ Prev 1 2 3 10 Next ›