Model checking exact cost for attack scenarios

Zaruhi Aslanyan; Flemming Nielson

doi:10.1007/978-3-662-54455-6_10

Model checking exact cost for attack scenarios

Zaruhi Aslanyan
, Flemming Nielson

Department of Applied Mathematics and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Article in proceedings › Research › peer-review

Abstract

Attack trees constitute a powerful tool for modelling security threats. Many security analyses of attack trees can be seamlessly expressed as model checking of Markov Decision Processes obtained from the attack trees, thus reaping the benefits of a coherent framework and a mature tool support. However, current model checking does not encompass the exact cost analysis of an attack, which is standard for attack trees. Our first contribution is the logic erPCTL with cost-related operators. The extended logic allows to analyse the probability of an event satisfying given cost bounds and to compute the exact cost of an event. Our second contribution is the model checking algorithm for erPCTL. Finally, we apply our framework to the analysis of attack trees.

Original language	English
Title of host publication	Principles of Security and Trust
Publisher	Springer
Publication date	2017
Pages	210-31
ISBN (Print)	9783662544549
DOIs	https://doi.org/10.1007/978-3-662-54455-6_10
Publication status	Published - 2017
Event	6^th International Conference on Principles of Security and Trust - Uppsala, Sweden Duration: 22 Apr 2017 → 29 Apr 2017 Conference number: 6

Conference

Conference	6^th International Conference on Principles of Security and Trust
Number	6
Country/Territory	Sweden
City	Uppsala
Period	22/04/2017 → 29/04/2017

Series	Lecture Notes in Computer Science
Volume	10204
ISSN	0302-9743

Keywords

Data security
Markov processes
Formal logic
Formal methods
Markov decision processes

Access to Document

10.1007/978-3-662-54455-6_10

OpenUrl availability

Check availability in DTU Findit

Cite this

@inproceedings{a58a7343819c47c299b93fafb73ef26b,

title = "Model checking exact cost for attack scenarios",

abstract = "Attack trees constitute a powerful tool for modelling security threats. Many security analyses of attack trees can be seamlessly expressed as model checking of Markov Decision Processes obtained from the attack trees, thus reaping the benefits of a coherent framework and a mature tool support. However, current model checking does not encompass the exact cost analysis of an attack, which is standard for attack trees. Our first contribution is the logic erPCTL with cost-related operators. The extended logic allows to analyse the probability of an event satisfying given cost bounds and to compute the exact cost of an event. Our second contribution is the model checking algorithm for erPCTL. Finally, we apply our framework to the analysis of attack trees.",

keywords = "Data security, Markov processes, Formal logic, Formal methods, Markov decision processes",

author = "Zaruhi Aslanyan and Flemming Nielson",

year = "2017",

doi = "10.1007/978-3-662-54455-6\_10",

language = "English",

isbn = "9783662544549",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "210--31",

booktitle = "Principles of Security and Trust",

note = "6th International Conference on Principles of Security and Trust , Post 2017 ; Conference date: 22-04-2017 Through 29-04-2017",

}

TY - GEN

T1 - Model checking exact cost for attack scenarios

AU - Aslanyan, Zaruhi

AU - Nielson, Flemming

N1 - Conference code: 6

PY - 2017

Y1 - 2017

N2 - Attack trees constitute a powerful tool for modelling security threats. Many security analyses of attack trees can be seamlessly expressed as model checking of Markov Decision Processes obtained from the attack trees, thus reaping the benefits of a coherent framework and a mature tool support. However, current model checking does not encompass the exact cost analysis of an attack, which is standard for attack trees. Our first contribution is the logic erPCTL with cost-related operators. The extended logic allows to analyse the probability of an event satisfying given cost bounds and to compute the exact cost of an event. Our second contribution is the model checking algorithm for erPCTL. Finally, we apply our framework to the analysis of attack trees.

AB - Attack trees constitute a powerful tool for modelling security threats. Many security analyses of attack trees can be seamlessly expressed as model checking of Markov Decision Processes obtained from the attack trees, thus reaping the benefits of a coherent framework and a mature tool support. However, current model checking does not encompass the exact cost analysis of an attack, which is standard for attack trees. Our first contribution is the logic erPCTL with cost-related operators. The extended logic allows to analyse the probability of an event satisfying given cost bounds and to compute the exact cost of an event. Our second contribution is the model checking algorithm for erPCTL. Finally, we apply our framework to the analysis of attack trees.

KW - Data security

KW - Markov processes

KW - Formal logic

KW - Formal methods

KW - Markov decision processes

U2 - 10.1007/978-3-662-54455-6_10

DO - 10.1007/978-3-662-54455-6_10

M3 - Article in proceedings

SN - 9783662544549

T3 - Lecture Notes in Computer Science

SP - 210

EP - 231

BT - Principles of Security and Trust

PB - Springer

T2 - 6th International Conference on Principles of Security and Trust

Y2 - 22 April 2017 through 29 April 2017

ER -

Model checking exact cost for attack scenarios

Abstract

Conference

Keywords

Access to Document

OpenUrl availability

Fingerprint

Cite this