Pubblicazioni
Autori: | Daniele Codetta Raiteri |
Area Scientifica: | Computer Security |
Dependability and Reliability | |
Titolo: | Generalized Fault Trees: from reliability to security |
Apparso su: | Proceedings of the International Workshop on Quantitative Aspects in Security Assurance |
Anno: | 2013 |
Tipo Pubblicazione: | Paper on Proceedings International Conference |
URL: | http://www.iit.cnr.it/q...13/qasa2013_proceedings.zip |
Sommario: | Fault Trees (FT) are widespread models in the reliability field, but they lack of modelling power. So, in the literature, several extensions have been proposed and introduced specific new modelling primitives. Attack Trees (AT) have gained acceptance in the field of security. They follow the same notation of standard FT, but they represent the combinations of actions necessary for the success of an attack to a computing system. In this paper, we extend the AT formalism by exploiting the new primitives introduced in specific FT extensions. This leads to more accurate models. The approach is applied to a case study: the AT is exploited to represent the attack mode and compute specific quantitative measures about the system security. |