Skip to Main content Skip to Navigation
Conference papers

A Template-Based Method for the Generation of Attack Trees

Abstract : Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.
Document type :
Conference papers
Complete list of metadata

https://hal.inria.fr/hal-03173899
Contributor : Hal Ifip <>
Submitted on : Thursday, March 18, 2021 - 5:38:24 PM
Last modification on : Friday, March 19, 2021 - 3:08:17 AM

File

 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2023-01-01

Please log in to resquest access to the document

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Jeremy Bryans, Lin Shen Liew, Hoang Nga Nguyen, Giedre Sabaliauskaite, Siraj Shaikh, et al.. A Template-Based Method for the Generation of Attack Trees. 13th IFIP International Conference on Information Security Theory and Practice (WISTP), Dec 2019, Paris, France. pp.155-165, ⟨10.1007/978-3-030-41702-4_10⟩. ⟨hal-03173899⟩

Share

Metrics

Record views

12