A Template-based Method for the Generation of Attack Trees

Jeremy Bryans; Lin Shen  Liew; Hoang Nga Nguyen; Giedre Sabaliauskaite; Siraj Shaikh; Fengjun  Zhou

doi:10.1007/978-3-030-41702-4_10

A Template-based Method for the Generation of Attack Trees

Jeremy Bryans, Lin Shen Liew, Hoang Nga Nguyen, Giedre Sabaliauskaite, Siraj Shaikh, Fengjun Zhou

Singapore University of Technology and Design

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding › peer-review

2 Citations (Scopus)

144 Downloads (Pure)

Abstract

Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.

Original language	English
Title of host publication	Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings
Editors	Maryline Laurent, Thanassis Giannetsos
Publisher	Springer, Cham
Pages	155-165
Number of pages	11
Edition	1
ISBN (Electronic)	978-3-030-41702-4
ISBN (Print)	978-3-030-41701-7
DOIs	https://doi.org/10.1007/978-3-030-41702-4_10
Publication status	E-pub ahead of print - 2 Mar 2020
Event	International Conference on Information Security Theory and Practice - Paris, France Duration: 11 Dec 2019 → 12 Dec 2019 http://www.wistp.org/

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	12024 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	International Conference on Information Security Theory and Practice
Abbreviated title	WISTP
Country/Territory	France
City	Paris
Period	11/12/19 → 12/12/19
Internet address	http://www.wistp.org/

Bibliographical note

The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-030-41702-4_10

Copyright © and Moral Rights are retained by the author(s) and/ or other copyright owners. A copy can be downloaded for personal non-commercial research or study, without prior permission or charge. This item cannot be reproduced or quoted extensively from without first obtaining permission in writing from the copyright holder(s). The content must not be changed in any way or sold commercially in any format or medium without the formal permission of the copyright holders.

Keywords

Attack trees
Automotive
Cybersecurity
Generation

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-030-41702-4_10

Post-PrintAccepted author manuscript, 587 KB

Cite this

Bryans, J., Liew, L. S., Nguyen, H. N., Sabaliauskaite, G., Shaikh, S., & Zhou, F. (2020). A Template-based Method for the Generation of Attack Trees. In M. Laurent, & T. Giannetsos (Eds.), Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings (1 ed., pp. 155-165). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12024 LNCS). Springer, Cham . https://doi.org/10.1007/978-3-030-41702-4_10

A Template-based Method for the Generation of Attack Trees. / Bryans, Jeremy; Liew, Lin Shen ; Nguyen, Hoang Nga et al.

Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings. ed. / Maryline Laurent; Thanassis Giannetsos. 1. ed. Springer, Cham , 2020. p. 155-165 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12024 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding › peer-review

Bryans, J, Liew, LS, Nguyen, HN , Sabaliauskaite, G , Shaikh, S & Zhou, F 2020, A Template-based Method for the Generation of Attack Trees. in M Laurent & T Giannetsos (eds), Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings. 1 edn, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 12024 LNCS, Springer, Cham , pp. 155-165, International Conference on Information Security Theory and Practice, Paris, France, 11/12/19. https://doi.org/10.1007/978-3-030-41702-4_10

Bryans J, Liew LS, Nguyen HN , Sabaliauskaite G , Shaikh S, Zhou F. A Template-based Method for the Generation of Attack Trees. In Laurent M, Giannetsos T, editors, Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings. 1 ed. Springer, Cham . 2020. p. 155-165. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). Epub 2020 Mar 2. doi: 10.1007/978-3-030-41702-4_10

Bryans, Jeremy ; Liew, Lin Shen ; Nguyen, Hoang Nga et al. / A Template-based Method for the Generation of Attack Trees. Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings. editor / Maryline Laurent ; Thanassis Giannetsos. 1. ed. Springer, Cham , 2020. pp. 155-165 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{dc946111dc404edaaf754247fd11944e,

title = "A Template-based Method for the Generation of Attack Trees",

abstract = "Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.",

keywords = "Attack trees, Automotive, Cybersecurity, Generation",

author = "Jeremy Bryans and Liew, {Lin Shen} and Nguyen, {Hoang Nga} and Giedre Sabaliauskaite and Siraj Shaikh and Fengjun Zhou",

note = "The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-030-41702-4_10 Copyright {\textcopyright} and Moral Rights are retained by the author(s) and/ or other copyright owners. A copy can be downloaded for personal non-commercial research or study, without prior permission or charge. This item cannot be reproduced or quoted extensively from without first obtaining permission in writing from the copyright holder(s). The content must not be changed in any way or sold commercially in any format or medium without the formal permission of the copyright holders. ; International Conference on Information Security Theory and Practice, WISTP ; Conference date: 11-12-2019 Through 12-12-2019",

year = "2020",

month = mar,

day = "2",

doi = "10.1007/978-3-030-41702-4_10",

language = "English",

isbn = "978-3-030-41701-7",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer, Cham ",

pages = "155--165",

editor = "Laurent, {Maryline } and Giannetsos, {Thanassis }",

booktitle = "Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings",

address = "Switzerland",

edition = "1",

url = "http://www.wistp.org/",

}

TY - GEN

T1 - A Template-based Method for the Generation of Attack Trees

AU - Bryans, Jeremy

AU - Liew, Lin Shen

AU - Nguyen, Hoang Nga

AU - Sabaliauskaite, Giedre

AU - Shaikh, Siraj

AU - Zhou, Fengjun

N1 - The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-030-41702-4_10 Copyright © and Moral Rights are retained by the author(s) and/ or other copyright owners. A copy can be downloaded for personal non-commercial research or study, without prior permission or charge. This item cannot be reproduced or quoted extensively from without first obtaining permission in writing from the copyright holder(s). The content must not be changed in any way or sold commercially in any format or medium without the formal permission of the copyright holders.

PY - 2020/3/2

Y1 - 2020/3/2

N2 - Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.

AB - Attack trees are used in cybersecurity analysis to give an analyst a view of all the ways in which an attack can be carried out. Attack trees can become large, and developing them by hand can be tedious and error-prone. In this paper the automated generation of attack trees is considered. The method proposed is based on a library of attack templates – parameterisable patterns of attacks such as denial of service or eavesdropping – and that also uses an abstract model of the network architecture under attack. A pseudocode implementation of the method is also presented. The example application given is from the automotive domain and using an architecture consisting of linked CAN networks – a network configuration found in virtually every current vehicle.

KW - Attack trees

KW - Automotive

KW - Cybersecurity

KW - Generation

UR - http://www.scopus.com/inward/record.url?scp=85082308049&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-41702-4_10

DO - 10.1007/978-3-030-41702-4_10

M3 - Conference proceeding

SN - 978-3-030-41701-7

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 155

EP - 165

BT - Information Security Theory and Practice - 13th IFIP WG 11.2 International Conference, WISTP 2019, Proceedings

A2 - Laurent, Maryline

A2 - Giannetsos, Thanassis

PB - Springer, Cham

T2 - International Conference on Information Security Theory and Practice

Y2 - 11 December 2019 through 12 December 2019

ER -

A Template-based Method for the Generation of Attack Trees

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this