7 research outputs found
Assistance Ă la conception et lâanalyse dâarbres dâattaque
En analyse de risques, les arbres dâattaque sont utilisĂ©s pour Ă©valuer les menaces sur un systĂšme. Les mĂ©thodes formelles permettent leur analyse quantitative et leur synthĂšse, mais les propriĂ©tĂ©s exprimant la qualitĂ© des arbres dâattaque par rapport au systĂšme nâont pas Ă©tĂ© formalisĂ©es. Dans ce document, nous dĂ©finissons un nouveau cadre formel pour les arbres dâattaque prenant en compte un modĂšle opĂ©rationnel du systĂšme, et dotant les arbres dâune sĂ©mantique de chemins. Nous dĂ©finissons les propriĂ©tĂ©s de correction des raffinements, et Ă©tudions leurs complexitĂ©s. A partir dâune attaque optimale dans un modĂšle de systĂšme quantitatif, nous guidons la conception dâun arbre dâattaque, en indiquant ses feuilles qui contribuent Ă lâattaque optimale considĂ©rĂ©e.In risk analysis, attack trees are used to assess threats to a system. Formal methods allow for their quantitative analysis and synthesis, but the properties expressing the quality of the attack trees with respect to the system have not been formalized. In this document, we define a new formal framework for attack trees that takes an operational model of the system into account, and provides the trees with a path semantics. We define the correctness properties of refinements, and study their computational complexity. Given an optimal attack in a quantitative system model, we guide the design of a attack tree, indicating its leaves that contribute to considered the optimal attack
On the Soundness of Attack Trees
International audienc
Guided Design of Attack Trees: A System-Based Approach
International audienc
Beyond 2014: Formal Methods for Attack Tree-based Security Modeling
International audienc