@inproceedings{ab39dfa803e34acab2ee23741bece5b8,
title = "Formal modelling and analysis of socio-technical systems",
abstract = "Attacks on systems and organisations increasingly exploit human actors, for example through social engineering. This non-technical aspect of attacks complicates their formal treatment and automatic identification. Formalisation of human behaviour is difficult at best, and attacks on socio-technical systems are still mostly identified through brainstorming of experts. In this work we discuss several approaches to formalising socio-technical systems and their analysis. Starting from a flow logic-based analysis of the insider threat, we discuss how to include the socio aspects explicitly, and show a formalisation that proves properties of this formalisation. On the formal side, our work closes the gap between formal and informal approaches to socio-technical systems. On the informal side, we show how to steal a birthday cake from a bakery by social engineering.",
author = "Probst, {Christian W.} and Florian Kamm{\"u}ller and Hansen, {Rene Rydhof}",
year = "2016",
doi = "10.1007/978-3-319-27810-0_3",
language = "English",
isbn = "978-3-319-27809-4",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
pages = "54--73",
editor = "Probst, {Christian W. } and Hankin, {Chris } and {Rydhof Hansen}, {Ren{\'e} }",
booktitle = "Semantics, Logics, and Calculi",
}