Fault Trees (FT) are widespread models in the reliability field, but they lack of modelling power. So, in the literature, several extensions have been proposed and introduced specific new modelling primitives. Attack Trees (AT) have gained acceptance in the field of security. They follow the same notation of standard FT,but they represent the combinations of actions necessary for the success of an attack to a computing system. In this paper, we extend the AT formalism by exploiting the new primitives introduced in specific FT extensions. This leads to more accurate models. The approach is applied to a case study: the AT is exploited to represent the attack mode and compute specific quantitative measures about the system security.
Generalized Fault Trees: from reliability to security
CODETTA RAITERI, Daniele
2013-01-01
Abstract
Fault Trees (FT) are widespread models in the reliability field, but they lack of modelling power. So, in the literature, several extensions have been proposed and introduced specific new modelling primitives. Attack Trees (AT) have gained acceptance in the field of security. They follow the same notation of standard FT,but they represent the combinations of actions necessary for the success of an attack to a computing system. In this paper, we extend the AT formalism by exploiting the new primitives introduced in specific FT extensions. This leads to more accurate models. The approach is applied to a case study: the AT is exploited to represent the attack mode and compute specific quantitative measures about the system security.| File | Dimensione | Formato | |
|---|---|---|---|
|
qasa.pdf
file ad accesso aperto
Tipologia:
Documento in Pre-print
Licenza:
DRM non definito
Dimensione
221.57 kB
Formato
Adobe PDF
|
221.57 kB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
