Probabilistic reasoning with graphical security models

Abstract : This work provides a computational framework for meaningful probabilistic evaluation of attack–defense scenarios involving dependent actions. We combine the graphical security modeling technique of attack–defense trees with probabilistic information expressed in terms of Bayesian networks. In order to improve the efficiency of probability computations on attack–defense trees, we make use of inference algorithms and encoding techniques from constraint reasoning. The proposed approach is illustrated on a running example and the computations are automated with the help of suitable software tools. We show that the computational routines developed in this paper form a conservative generalization of the attack–defense tree formalism defined previously. We discuss the algebraic theory underlying our framework and point out several generalizations which are possible thanks to the use of semiring theory. Finally, our results apply directly to the analysis of the industrially recognized model of attack trees.
Type de document :
Article dans une revue
Liste complète des métadonnées

https://hal.inria.fr/hal-01289186
Contributeur : Barbara Kordy <>
Soumis le : mercredi 16 mars 2016 - 11:51:41
Dernière modification le : jeudi 5 avril 2018 - 12:30:24

Identifiants

Citation

Barbara Kordy, Pouly Marc, Patrick Schweitzer. Probabilistic reasoning with graphical security models. Information Sciences, Elsevier, 2016, 342, pp.111-131. 〈http://www.journals.elsevier.com/information-sciences/〉. 〈10.1016/j.ins.2016.01.010〉. 〈hal-01289186〉

Partager

Métriques

Consultations de la notice

228