Attack Trees with Sequential Conjunction - ICT Systems Security and Privacy Protection
Conference Papers Year : 2015

Attack Trees with Sequential Conjunction

Abstract

We provide the first formal foundation of SAND attack trees which are a popular extension of the well-known attack trees. The SAND attack tree formalism increases the expressivity of attack trees by introducing the sequential conjunctive operator SAND. This operator enables the modeling of ordered events. We give a semantics to SAND attack trees by interpreting them as sets of series-parallel graphs and propose a complete axiomatization of this semantics. We define normal forms for SAND attack trees and a term rewriting system which allows identification of semantically equivalent trees. Finally, we formalize how to quantitatively analyze SAND attack trees using attributes.
Fichier principal
Vignette du fichier
337885_1_En_23_Chapter.pdf (537.15 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01197256 , version 1 (13-07-2016)

Identifiers

Cite

Barbara Kordy, Ravi Jhawar, Sjouke Mauw, Sasa Radomirovic, Roland Trujillo-Rasua. Attack Trees with Sequential Conjunction. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. pp.339-353, ⟨10.1007/978-3-319-18467-8_23⟩. ⟨hal-01197256⟩
352 View
1082 Download

Altmetric

Share

More