Using Attack-Defense Trees to Analyze Threats and Countermeasures in an ATM: A Case Study

Abstract : Securing automated teller machines (ATMs), as critical and complex infrastructure, requires a precise understanding of the associated threats. This paper reports on the application of attack-defense trees to model and analyze the security of ATMs. We capture the most dangerous multi-stage attack scenarios applicable to ATM structures, and establish a practical experience report, where we reflect on the process of modeling ATM threats via attack-defense trees. In particular, we share our insights into the benefits and drawbacks of attack-defense tree modeling, as well as best practices and lessons learned.
Type de document :
Communication dans un congrès
Jennifer Horkoff; Manfred A. Jeusfeld; Anne Persson. 9th IFIP Working Conference on The Practice of Enterprise Modeling (PoEM), Nov 2016, Skövde, Sweden. Springer International Publishing, Lecture Notes in Business Information Processing, LNBIP-267, pp.326-334, 2016, The Practice of Enterprise Modeling 〈10.1007/978-3-319-48393-1_24〉
Liste complète des métadonnées

Littérature citée [19 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01653513
Contributeur : Hal Ifip <>
Soumis le : vendredi 1 décembre 2017 - 15:15:11
Dernière modification le : samedi 2 décembre 2017 - 01:15:20

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Marlon Fraile, Margaret Ford, Olga Gadyatskaya, Rajesh Kumar, Mariëlle Stoelinga, et al.. Using Attack-Defense Trees to Analyze Threats and Countermeasures in an ATM: A Case Study. Jennifer Horkoff; Manfred A. Jeusfeld; Anne Persson. 9th IFIP Working Conference on The Practice of Enterprise Modeling (PoEM), Nov 2016, Skövde, Sweden. Springer International Publishing, Lecture Notes in Business Information Processing, LNBIP-267, pp.326-334, 2016, The Practice of Enterprise Modeling 〈10.1007/978-3-319-48393-1_24〉. 〈hal-01653513〉

Partager

Métriques

Consultations de la notice

15