3University of Luxembourg [Luxembourg] (Campus Kirchberg
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg
Campus de Limpertsberg
162a, avenue de la Faïencerie
L-1511 Luxembourg
Campus de Belval
2, avenue de l'Université
L-4365 Esch-sur-Alzette - Luxembourg)
Abstract : This work provides a computational framework for meaningful probabilistic evaluation of attack–defense scenarios involving dependent actions. We combine the graphical security modeling technique of attack–defense trees with probabilistic information expressed in terms of Bayesian networks. In order to improve the efficiency of probability computations on attack–defense trees, we make use of inference algorithms and encoding techniques from constraint reasoning. The proposed approach is illustrated on a running example and the computations are automated with the help of suitable software tools. We show that the computational routines developed in this paper form a conservative generalization of the attack–defense tree formalism defined previously. We discuss the algebraic theory underlying our framework and point out several generalizations which are possible thanks to the use of semiring theory. Finally, our results apply directly to the analysis of the industrially recognized model of attack trees.
https://hal.inria.fr/hal-01289186 Contributor : Barbara FilaConnect in order to contact the contributor Submitted on : Wednesday, March 16, 2016 - 11:51:41 AM Last modification on : Wednesday, November 3, 2021 - 6:05:35 AM
Barbara Kordy, Pouly Marc, Patrick Schweitzer. Probabilistic reasoning with graphical security models. Information Sciences, Elsevier, 2016, 342, pp.111-131. ⟨10.1016/j.ins.2016.01.010⟩. ⟨hal-01289186⟩