%0 Conference Proceedings
%T Hacking Goals: A Goal-Centric Attack Classification Framework
%+ University of Naples Federico II = Università degli studi di Napoli Federico II
%A Caturano, Francesco
%A Perrone, Gaetano
%A Romano, Simon, Pietro
%Z Part 5: Short Contributions
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 32th IFIP International Conference on Testing Software and Systems (ICTSS)
%C Naples, Italy
%Y Valentina Casola
%Y Alessandra De Benedictis
%Y Massimiliano Rak
%I Springer International Publishing
%3 Testing Software and Systems
%V LNCS-12543
%P 296-301
%8 2020-12-09
%D 2020
%R 10.1007/978-3-030-64881-7_19
%Z Computer Science [cs]
%Z Computer Science [cs]/Networking and Internet Architecture [cs.NI]Conference papers
%X Attack classification does represent a crucial activity in different security areas. During security assessment, it makes it easier to define which attacks must be performed. When conducting threat modeling activities, it simplifies the definition of attack graphs. Many works have addressed the attack taxonomy problem, by introducing different ways to classify attacks. However, these classifications are centered around vulnerabilities and have all been designed from the point of view of those defending a system. Nowadays, companies have a growing interest in Penetration Testing activities, as they have proven effective in detecting vulnerabilities. Penetration testers perform their activity by focusing on goals rather than attack types. In this paper we introduce a “goal-centric” methodology to classify attacks in terms of Hacking Goals.
%G English
%Z TC 6
%Z WG 6.1
%2 https://inria.hal.science/hal-03239816/document
%2 https://inria.hal.science/hal-03239816/file/497758_1_En_19_Chapter.pdf
%L hal-03239816
%U https://inria.hal.science/hal-03239816
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC6
%~ IFIP-WG6-1
%~ IFIP-ICTSS
%~ IFIP-LNCS-12543