Skip to Main content Skip to Navigation
Documents associated with scientific events

Vers une synthèse d'arbres d'attaque pour une analyse de risques assistée par ordinateur

Stéphanie Georges 1 Sophie Pinchinat 1
1 LogicA - Logic and Applications
ENS Cachan - École normale supérieure - Cachan, UR1 - Université de Rennes 1, IRISA-D4 - LANGAGE ET GÉNIE LOGICIEL
Abstract : Risk Analysis is a discipline consisting in identifying and evaluating risks that threaten a given system in order to reduce or annihilate them by defining actions to engage (risk management). After (Bornette et al., 2005), we have developed a method aiming at building attack scenarios against a system that has to be protected. We describe this method in the present article. The main principle is to extract from a dedicated model of the system the scenarios (expressed as a succession of elementary actions) allowing to reach, from an initial state, a given goal (expressed as a set of damages against which we want to provide countermeasures). Thanks to the use of high-level actions, these scenarios are then gathered into an attack tree allowing after specific processing to highlight flaws to bring down.
Document type :
Documents associated with scientific events
Complete list of metadata

Cited literature [6 references]  Display  Hide  Download

https://hal.inria.fr/hal-00876647
Contributor : Hervé Marchand <>
Submitted on : Friday, October 25, 2013 - 11:36:41 AM
Last modification on : Monday, February 15, 2021 - 10:38:19 AM
Long-term archiving on: : Friday, April 7, 2017 - 5:31:14 PM

File

Georges.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-00876647, version 1

Citation

Stéphanie Georges, Sophie Pinchinat. Vers une synthèse d'arbres d'attaque pour une analyse de risques assistée par ordinateur. MSR 2013 - Modélisation des Systèmes Réactifs, 2013, Rennes, France. ⟨hal-00876647⟩

Share

Metrics

Record views

615

Files downloads

1961