Abstract : Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.
https://hal.inria.fr/hal-03173899 Contributor : Hal IfipConnect in order to contact the contributor Submitted on : Thursday, March 18, 2021 - 5:38:24 PM Last modification on : Friday, January 14, 2022 - 2:12:05 PM Long-term archiving on: : Monday, June 21, 2021 - 8:56:44 AM
File
Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed
until : 2023-01-01
Jeremy Bryans, Lin Shen Liew, Hoang Nga Nguyen, Giedre Sabaliauskaite, Siraj Shaikh, et al.. A Template-Based Method for the Generation of Attack Trees. 13th IFIP International Conference on Information Security Theory and Practice (WISTP), Dec 2019, Paris, France. pp.155-165, ⟨10.1007/978-3-030-41702-4_10⟩. ⟨hal-03173899⟩