Abstract
We provide the first formal foundation of SAND attack trees which are a popular extension of the well-known attack trees. The SAND attack tree formalism increases the expressivity of attack trees by introducing the sequential conjunctive operator SAND. This operator enables the modeling of ordered events. We give a semantics to SAND attack trees by interpreting them as sets of series-parallel graphs and propose a complete axiomatization of this semantics. We define normal forms for SAND attack trees and a term rewriting system which allows identification of semantically equivalent trees. Finally, we formalize how to quantitatively analyze SAND attack trees using attributes.
Original language | English |
---|---|
Title of host publication | ICT Systems Security and Privacy Protection |
Subtitle of host publication | 30th IFIP TC 11 International Conference, SEC 2015 Hamburg, Germany, May 26–28, 2015 Proceedings |
Editors | Hannes Federrath, Dieter Gollmann |
Place of Publication | Switzerland |
Publisher | Springer International Publishing |
Pages | 339-353 |
Number of pages | 15 |
ISBN (Electronic) | 9783319184678 |
ISBN (Print) | 9783319184661 |
DOIs | |
Publication status | Published - 2015 |
Event | 30th International Conference on ICT Systems Security and Privacy Protection - University of Hamburg, ESA Campus, Hamburg, Germany Duration: 26 May 2015 → 28 May 2015 https://www.ifipsec.org/2015/ (Link to Conference website) |
Publication series
Name | IFIP Advances in Information and Communication Technology |
---|---|
Volume | 455 |
ISSN (Print) | 1868-4238 |
ISSN (Electronic) | 1868-422X |
Conference
Conference | 30th International Conference on ICT Systems Security and Privacy Protection |
---|---|
Abbreviated title | IFIP SEC 2015 |
Country/Territory | Germany |
City | Hamburg |
Period | 26/05/15 → 28/05/15 |
Internet address |
|
Keywords
- Attack trees
- SAND
- Security modeling
- Sequential operators
ASJC Scopus subject areas
- Information Systems and Management