%0 Conference Proceedings
%T A Template-Based Method for the Generation of Attack Trees
%+ Coventry University
%+ Singapore University of Technology and Design (SUTD)
%A Bryans, Jeremy
%A Liew, Lin Shen
%A Nguyen, Hoang Nga
%A Sabaliauskaite, Giedre
%A Shaikh, Siraj
%A Zhou, Fengjun
%Z Part 4: Threats
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 13th IFIP International Conference on Information Security Theory and Practice (WISTP)
%C Paris, France
%Y Maryline Laurent
%Y Thanassis Giannetsos
%I Springer International Publishing
%3 Information Security Theory and Practice
%V LNCS-12024
%P 155-165
%8 2019-12-11
%D 2019
%R 10.1007/978-3-030-41702-4_10
%K Attack trees
%K Generation
%K Automotive
%K Cybersecurity
%Z Computer Science [cs]Conference papers
%X Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.
%G English
%Z TC 11
%Z WG 11.2
%2 https://inria.hal.science/hal-03173899/document
%2 https://inria.hal.science/hal-03173899/file/492809_1_En_10_Chapter.pdf
%L hal-03173899
%U https://inria.hal.science/hal-03173899
%~ LORIA2
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-TC11
%~ IFIP-WISTP
%~ IFIP-WG11-2
%~ IFIP-LNCS-12024