Abstract
Attacks on a system often exploit vulnerabilities that arise from human behaviour or other human activity. Attacks of this type, so-called socio-technical attacks, cover everything from social engineering to insider attacks, and they can have a devastating impact on an unprepared organisation. In this paper we develop an approach towards modelling socio-technical systems in general and socio-technical attacks in particular, using timed automata and illustrate its application by a complex case study. Thanks to automated model checking and automata theory, we can automatically generate possible attacks in our model and perform analysis and simulation of both model and attack, revealing details about the specific interaction between attacker and victim. Using timed automata also allows for intuitive modelling of systems, in which quantities like time and cost can be easily added and analysed.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 7th ACM CCS International Workshop on Managing Insider Security Threats (ACM MIST '15) |
| Publisher | Association for Computing Machinery |
| Publication date | 2015 |
| Pages | 21-28 |
| ISBN (Print) | 978-1-4503-3824-0 |
| DOIs | |
| Publication status | Published - 2015 |
| Event | 7th ACM CCS International Workshop on Managing Insider Security Threats (MIST '15) - The Denver Marriot City Center, Denver, Colorado, United States Duration: 12 Oct 2015 → 16 Oct 2015 Conference number: 7 http://isyou.info/conf/mist15/ |
Workshop
| Workshop | 7th ACM CCS International Workshop on Managing Insider Security Threats (MIST '15) |
|---|---|
| Number | 7 |
| Location | The Denver Marriot City Center |
| Country/Territory | United States |
| City | Denver, Colorado |
| Period | 12/10/2015 → 16/10/2015 |
| Other | In Conjunction with the 22nd ACM Conference on Computer and Communications Security (ACM CCS 2015) |
| Internet address |
Keywords
- Insider threats
- Timed automata
- Attack trees
- Attack generation