attack trees semi adaptive model
play

Attack Trees: semi-adaptive model Aivo Jrgenson 2 , 3 Jan Willemson 1 - PowerPoint PPT Presentation

Feb 14, 2024 •223 likes •520 views

Attack Trees: semi-adaptive model Aivo Jrgenson 2 , 3 Jan Willemson 1 1 Cybernetica, Tartu, Estonia 2 Tallinn University of Technology, Tallinn, Estonia 3 Elion Enterprises Ltd, Tallinn, Estonia 1st February 2009 Jrgenson,Willemson (Estonia)

  1. Attack Trees: semi-adaptive model Aivo Jürgenson 2 , 3 Jan Willemson 1 1 Cybernetica, Tartu, Estonia 2 Tallinn University of Technology, Tallinn, Estonia 3 Elion Enterprises Ltd, Tallinn, Estonia 1st February 2009 Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 1 / 13

  2. Outline of the talk 1 Introduction to multi-parameter attack trees 2 Semi-adaptive model 3 Semi-adaptive blocking model 4 Results and Questions Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 2 / 13

  3. Attack trees (J. D. Weiss 1991, B. Schneier 1999) ∨ Obtain ad- ministrator privileges ∨ ∨ Obtain ad- Access ministrator system password console ∨ & Enter Look over Corrupt Guess computer admin operator password center shoulder Encounter Break into Obtain Unattended simple computer password guest password center file Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 3 / 13

  4. Attacker financial game (A. Buldas et al. 2006) Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 4 / 13

  5. Attacker financial game (A. Buldas et al. 2006) Preventive yes Attack prepa- Gains from security p ration costs the attack broken? ( 1 − p ) no yes yes Attacker Attacker Penalty paid Penalty paid caught? caught? q + q − ( 1 − q + ) no ( 1 − q − ) no Outcome = Outcome = Outcome = Outcome = − Cost + − Cost − − Cost − Cost + Gains Gains − Penalties − Penalties + Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 4 / 13

  6. Attacker financial game (A. Buldas et al. 2006) Preventive yes Attack prepa- Gains from security p ration costs the attack broken? ( 1 − p ) no yes yes Attacker Attacker Penalty paid Penalty paid caught? caught? q + q − ( 1 − q + ) no ( 1 − q − ) no Outcome = Outcome = Outcome = Outcome = − Cost + − Cost − − Cost − Cost + Gains Gains − Penalties − Penalties + Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 4 / 13

  7. Attacker financial game (A. Buldas et al. 2006) Preventive yes Attack prepa- Gains from security p ration costs the attack broken? ( 1 − p ) no yes yes Attacker Attacker Penalty paid Penalty paid caught? caught? q + q − ( 1 − q + ) no ( 1 − q − ) no Outcome = Outcome = Outcome = Outcome = − Cost + − Cost − − Cost − Cost + Gains Gains − Penalties − Penalties + Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 4 / 13

  8. Attacker financial game (A. Buldas et al. 2006) Preventive yes Attack prepa- Gains from security p ration costs the attack broken? ( 1 − p ) no yes yes Penalties + Attacker Attacker Penalties − caught? caught? paid paid q + q − ( 1 − q + ) no ( 1 − q − ) no Outcome = Outcome = Outcome = Outcome = − Cost + − Cost − − Cost − Cost + Gains Gains − Penalties − Penalties + Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 4 / 13

  9. Attacker financial game (A. Buldas et al. 2006) Preventive yes Attack prepa- Gains from security p ration costs the attack broken? ( 1 − p ) no yes yes Penalties + Attacker Attacker Penalties − caught? caught? paid paid q + q − ( 1 − q + ) no ( 1 − q − ) no Outcome = Outcome = Outcome = Outcome = − Cost + − Cost − − Cost − Cost + Gains Gains − Penalties − Penalties + Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 4 / 13

  10. Multi-parameter Attack Trees (A. Buldas et al., 2006) Gains – the value gained from the successful attack Cost i – the cost of the elementary attack, p i – success probability π − i = q − i · Penalty − – the expected penalty, unsuccessful attack i π + i = q + i · Penalty + – the expected penalty, successful attack i Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 5 / 13

  11. Multi-parameter Attack Trees (A. Buldas et al., 2006) Gains – the value gained from the successful attack Cost i – the cost of the elementary attack, p i – success probability π − i = q − i · Penalty − – the expected penalty, unsuccessful attack i π + i = q + i · Penalty + – the expected penalty, successful attack i � ( Cost 1 , p 1 , π + 1 , π − 1 ) , if Outcome 1 > Outcome 2 ( Cost , p , π + , π − ) = ( Cost 2 , p 2 , π + 2 , π − 2 ) , if Outcome 1 ≤ Outcome 2 Outcome i = p i · Gains − Cost i − p i · π + i − ( 1 − p i ) · π − i Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 5 / 13

  12. Multi-parameter Attack Trees (A. Buldas et al., 2006) Gains – the value gained from the successful attack Cost i – the cost of the elementary attack, p i – success probability π − i = q − i · Penalty − – the expected penalty, unsuccessful attack i π + i = q + i · Penalty + – the expected penalty, successful attack i � ( Cost 1 , p 1 , π + 1 , π − 1 ) , if Outcome 1 > Outcome 2 ( Cost , p , π + , π − ) = ( Cost 2 , p 2 , π + 2 , π − 2 ) , if Outcome 1 ≤ Outcome 2 Outcome i = p i · Gains − Cost i − p i · π + i − ( 1 − p i ) · π − i π + = π + 1 + π + Cost = Cost 1 + Cost 2 , p = p 1 · p 2 , 2 , p 1 ( 1 − p 2 )( π + 1 + π + 1 + π − 2 ) + ( 1 − p 1 ) p 2 ( π − 2 ) π − = + 1 − p 1 p 2 +( 1 − p 1 )( 1 − p 2 )( π − 1 + π − 2 ) 1 − p 1 p 2 Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 5 / 13

  13. Attacker adaptiveness Current models all assume that all attacks take place simultanously, in the same time. In the real life, attacker has the option to choose different strategy during the execution of attack tree, after some elementary attack succeeds, or fails. Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 6 / 13

  14. Attacker adaptiveness Current models all assume that all attacks take place simultanously, in the same time. In the real life, attacker has the option to choose different strategy during the execution of attack tree, after some elementary attack succeeds, or fails. Full-adaptive model attacker can choose any not-used attack for the next step, rather complicated to analyze, we will not go there. Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 6 / 13

  15. Attacker adaptiveness Current models all assume that all attacks take place simultanously, in the same time. In the real life, attacker has the option to choose different strategy during the execution of attack tree, after some elementary attack succeeds, or fails. Full-adaptive model attacker can choose any not-used attack for the next step, rather complicated to analyze, we will not go there. Semi-adaptive model attacker fixes the order of the attacks, attacker has the option to skip some attacks from the previously fixed order. Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 6 / 13

  16. Semi-adaptive model Simplified attacker actions: Create the attack tree F with the set of elementary attacks X = { X 1 , X 2 , . . . , X n } . Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 7 / 13

  17. Semi-adaptive model Simplified attacker actions: Create the attack tree F with the set of elementary attacks X = { X 1 , X 2 , . . . , X n } . Choose subset S ⊆ X and create the subtree, i.e. choose one possible way of realizing the attack tree F . Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 7 / 13

  18. Semi-adaptive model Simplified attacker actions: Create the attack tree F with the set of elementary attacks X = { X 1 , X 2 , . . . , X n } . Choose subset S ⊆ X and create the subtree, i.e. choose one possible way of realizing the attack tree F . Choose the permutation α for the subset S , i.e. choose the order of the attacks, eq α = { X 2 , X 3 , X 1 } . Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 7 / 13

  19. Semi-adaptive model Simplified attacker actions: Create the attack tree F with the set of elementary attacks X = { X 1 , X 2 , . . . , X n } . Choose subset S ⊆ X and create the subtree, i.e. choose one possible way of realizing the attack tree F . Choose the permutation α for the subset S , i.e. choose the order of the attacks, eq α = { X 2 , X 3 , X 1 } . Evaluate the outcome of the subtree S and permutation α . Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 7 / 13

  20. Semi-adaptive model Simplified attacker actions: Create the attack tree F with the set of elementary attacks X = { X 1 , X 2 , . . . , X n } . Choose subset S ⊆ X and create the subtree, i.e. choose one possible way of realizing the attack tree F . Choose the permutation α for the subset S , i.e. choose the order of the attacks, eq α = { X 2 , X 3 , X 1 } . Evaluate the outcome of the subtree S and permutation α . Choose the maximum outcome for all different combinations of permuations α and subtrees S . Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 7 / 13

  21. Evaluating the outcome of attack tree Outcome semiadaptive = max { Outcome α : S ⊆ X , F ( S := true ) = true , α } n � Outcome α = p α · Gains − p α, i · Expenses i i = 1 Jürgenson,Willemson (Estonia) Attack Trees: semi-adaptive model 1st February 2009 8 / 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Causal Model Extraction from Attack Trees to Attribute Malicious Insider Attacks Amjad Ibrahim,

Causal Model Extraction from Attack Trees to Attribute Malicious Insider Attacks Amjad Ibrahim,

Causal Model Extraction from Attack Trees to Attribute Malicious Insider Attacks Amjad Ibrahim, Simon Rehwald, Antoine Scemama, Florian Andres, Alexander Pretschner Technische Universitt Mnchen Department of Informatics Chair of Software

512 views • 24 slides
Adaptive semi-Lagrangian schemes for transport (how to predict accurate grids ?) Martin Campos

Adaptive semi-Lagrangian schemes for transport (how to predict accurate grids ?) Martin Campos

Motivation Adaptive semi-Lagrangian schemes Adaptive semi-Lagrangian schemes for transport (how to predict accurate grids ?) Martin Campos Pinto CNRS & University of Strasbourg, France joint work Albert Cohen (Paris 6), Michel Mehrenberger

365 views • 19 slides
Se Semi-Su Supervise sed QA with Ge Generative Do Doma main-Ad Adaptive N e Nets C arnegie

Se Semi-Su Supervise sed QA with Ge Generative Do Doma main-Ad Adaptive N e Nets C arnegie

Se Semi-Su Supervise sed QA with Ge Generative Do Doma main-Ad Adaptive N e Nets C arnegie M ellon U niversity Zhilin Yang , Junjie Hu, Ruslan Salakhutdinov, William W. Cohen Xiachong Feng Ou Outline Author Overview

337 views • 23 slides
#82 Adaptive Neural Trees Ryutaro Tanno , Kai Arulkumaran, Daniel C. Alexander, Antonio

#82 Adaptive Neural Trees Ryutaro Tanno , Kai Arulkumaran, Daniel C. Alexander, Antonio

#82 Adaptive Neural Trees Ryutaro Tanno , Kai Arulkumaran, Daniel C. Alexander, Antonio Criminisi, Aditya Nori Two Paradigms of Machine Learning Deep Neural Networks Decision Trees hierarchical representation of data hierarchical

351 views • 14 slides
COMP60411 Semi-structured Data and the Web Validating Trees against Tree Grammars The Essence of

COMP60411 Semi-structured Data and the Web Validating Trees against Tree Grammars The Essence of

COMP60411 Semi-structured Data and the Web Validating Trees against Tree Grammars The Essence of XML and Errors Bijan Parsia and Uli Sattler University of Manchester 1 Saturday, 29 October 2011 1 Last week... ...we have designed our first

1.23k views • 105 slides
Adaptive Distributed Distributed Traffic Traffic Adaptive Adaptive Distributed Traffic Control

Adaptive Distributed Distributed Traffic Traffic Adaptive Adaptive Distributed Traffic Control

Adaptive Distributed Distributed Traffic Traffic Adaptive Adaptive Distributed Traffic Control Service Service for for DDoS DDoS Attack Attack Control Control Service for DDoS Attack Mitigation Mitigation Mitigation Bernhard Plattner,

474 views • 24 slides
Introduction Attack Graphs Model Creation Analysis of Attack Graphs

Introduction Attack Graphs Model Creation Analysis of Attack Graphs

EVA Evolutionary Vulnerability Analyzer A Framework for Network Analysis and Risk Assessment Dr. Melissa Danforth Department of Computer Science California State University, Bakersfield Introduction Attack Graphs Model Creation

684 views • 50 slides
Assisted Generation of Attack Trees : the ATSyRAprototype Sophie Pinchinat joint work with

Assisted Generation of Attack Trees : the ATSyRAprototype Sophie Pinchinat joint work with

Assisted Generation of Attack Trees : the ATSyRAprototype Sophie Pinchinat joint work with Mathieu Acher and Didier Vojtisek Universit e de Rennes 1 GraMSec, 13 July 2015 Outline Introductory example 1 Goal decomposition High-level

798 views • 32 slides
A DEPTS : Adaptive Intrusion Response using Attack Graphs in an e-Commerce Environment Bingrui

A DEPTS : Adaptive Intrusion Response using Attack Graphs in an e-Commerce Environment Bingrui

A DEPTS : Adaptive Intrusion Response using Attack Graphs in an e-Commerce Environment Bingrui Foo, Yu-Sung Wu, Yu-Chun Mao, Saurabh Bagchi, Eugene Spafford Purdue University Dependable Computing Systems Lab (http://shay.ecn.purdue.edu/~dcsl)

608 views • 23 slides
Adaptive Sequential Recommendation for Discussion Forums on MOOCs using Context Trees Fei Mi, Boi

Adaptive Sequential Recommendation for Discussion Forums on MOOCs using Context Trees Fei Mi, Boi

Introduction and Motivation The Proposed Context Tree Recommender Experiment Results Conclusion and Future Work References Adaptive Sequential Recommendation for Discussion Forums on MOOCs using Context Trees Fei Mi, Boi Faltings Artificial

396 views • 22 slides
( ( ) ) ( ) ( ) = = Work = h log t n B- B -Trees Trees B B- -Trees

( ( ) ) ( ) ( ) = = Work = h log t n B- B -Trees Trees B B- -Trees

B- B -Trees Trees B B- -Trees Trees Search for key R ( ( ) ) ( ) ( ) = = Work = h log t n B- B -Trees Trees B B- -Trees Trees Each Disk-Read or Disk-Write = one Basic unit of work O(1) Typical Node x

287 views • 4 slides
Squeezing State Spaces of (Attack-Defence) Trees l Knapik 1 Wojciech Penczek 1 Micha Laure

Squeezing State Spaces of (Attack-Defence) Trees l Knapik 1 Wojciech Penczek 1 Micha Laure

Squeezing State Spaces of (Attack-Defence) Trees l Knapik 1 Wojciech Penczek 1 Micha Laure Petrucci 2 Teofil Sidoruk 1 1 Institute of Computer Science, Polish Academy of Sciences 2 LIPN, CNRS UMR 7030, Universit e Sorbonne Paris Nord LAMAS

388 views • 23 slides
Toward Self-Adaptive Software Employing Model Predictive Control NII Shonan Meeting on Controlled

Toward Self-Adaptive Software Employing Model Predictive Control NII Shonan Meeting on Controlled

Toward Self-Adaptive Software Employing Model Predictive Control NII Shonan Meeting on Controlled Adaptation of Self-Adaptive Systems (CASaS) Shonan, Japan, April 24-28, 2016 Holger Giese , Thomas Vogel , and Sona Ghahremani Hasso Plattner

313 views • 15 slides
A Nonlinear Trust-Region Framework for PDE-Constrained Optimization Using Adaptive Model

A Nonlinear Trust-Region Framework for PDE-Constrained Optimization Using Adaptive Model

Introduction Optimization via Adaptive Model Reduction Large-Scale, Constrained Optimization Conclusion A Nonlinear Trust-Region Framework for PDE-Constrained Optimization Using Adaptive Model Reduction Matthew J. Zahr Institute for

336 views • 33 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
Mitigating Wordline Crosstalk using Adaptive Trees of Counters Mohammad Seyedzadeh , Alex Jones,

Mitigating Wordline Crosstalk using Adaptive Trees of Counters Mohammad Seyedzadeh , Alex Jones,

Mitigating Wordline Crosstalk using Adaptive Trees of Counters Mohammad Seyedzadeh , Alex Jones, Rami Melhem University of Pi8sburgh Wordline Crosstalk in DRAM DRAM Scaling High Memory Capacity Voltage Fluctua<ons DRAM Cells

527 views • 33 slides
Reading Assignment Chapter 3.1, 3.2 Chapter 4.1, 4.3 1

Reading Assignment Chapter 3.1, 3.2 Chapter 4.1, 4.3 1

Reading Assignment Chapter 3.1, 3.2 Chapter 4.1, 4.3 1 Outline Introduc5on to assembly programing Introduc5on to Y86 Y86 instruc5ons, encoding

715 views • 50 slides
Linking Abstract Plans of Scientific Experiments to their Corresponding Execution Traces Milan

Linking Abstract Plans of Scientific Experiments to their Corresponding Execution Traces Milan

Linking Abstract Plans of Scientific Experiments to their Corresponding Execution Traces Milan Markovic, Daniel Garijo*, and Peter Edwards University of Aberdeen *University of Southern California Scientific Workflows Computational steps

134 views • 10 slides
Query Processing 5DV120 Database System Principles Ume a University Department of

Query Processing 5DV120 Database System Principles Ume a University Department of

Query Processing 5DV120 Database System Principles Ume a University Department of Computing Science Stephen J. Hegner hegner@cs.umu.se http://www.cs.umu.se/~hegner Query Processing 20160502 Slide 1 of 67 Overview Question: How is a

890 views • 68 slides
Welcome to CSE 142! Zorah Fung University of Washington, Summer 2014 Building Java Programs

Welcome to CSE 142! Zorah Fung University of Washington, Summer 2014 Building Java Programs

Welcome to CSE 142! Zorah Fung University of Washington, Summer 2014 Building Java Programs Chapter 1 Lecture 1-1: Introduction; Basic Java Programs reading: 1.1 - 1.3 1 What is computer science? computers? science? programming?

420 views • 28 slides
CSC165 Larry Zhang, September 30, 2014 Announcements Assignment 1 due this Friday Term

CSC165 Larry Zhang, September 30, 2014 Announcements Assignment 1 due this Friday Term

CSC165 Larry Zhang, September 30, 2014 Announcements Assignment 1 due this Friday Term test 1 next Tuesday in class Time: 6:10pm -- 7pm Location: BA1130 Aid sheet: 8.5x11, both sides, handwritten Old exam repository

916 views • 46 slides
A POWER CAPPING APPROACH FOR HPC SYSTEM DEMAND RESPONSE Kishwar Ahmed , Research Aide MCS

A POWER CAPPING APPROACH FOR HPC SYSTEM DEMAND RESPONSE Kishwar Ahmed , Research Aide MCS

A POWER CAPPING APPROACH FOR HPC SYSTEM DEMAND RESPONSE Kishwar Ahmed , Research Aide MCS Division Argonne National Laboratory, IL, USA Mentor: Kazutomo Yoshii MCS Division Argonne National Laboratory, IL, USA 2 Outline Motivation

494 views • 35 slides
Nature abhors a void Bertrand Meyer Software Engineering The basic O-O operation x . f ( args

Nature abhors a void Bertrand Meyer Software Engineering The basic O-O operation x . f ( args

Nature abhors a void Bertrand Meyer Software Engineering The basic O-O operation x . f ( args ) Semantics: apply the feature f , with given args if any, to the object to which x is attached and the basic issue studied here: How do we

735 views • 58 slides
Valley Clean Energy Alliance A locally controlled energy provider Board of Directors Meeting

Valley Clean Energy Alliance A locally controlled energy provider Board of Directors Meeting

Valley Clean Energy Alliance A locally controlled energy provider Board of Directors Meeting December 13, 2016 5:00 pm Item 4: VCEA Implementation Team (as of December 2016) City of Davis Team : 1. Mike Webb, Assistant City Manager 2. Mitch

376 views • 14 slides

More recommend