library based attack tree synthesis
play

Library-based Attack Tree Synthesis S ebastien L e Cong, Sophie - PowerPoint PPT Presentation

May 27, 2023 •8 likes •198 views

Formal setting Algorithm and demo Theoretical complexity Conclusion Library-based Attack Tree Synthesis S ebastien L e Cong, Sophie Pinchinat Francois Schwarzentruber Univ Rennes - France June 22, 2020 1 / 19 Formal setting

  1. Formal setting Algorithm and demo Theoretical complexity Conclusion Library-based Attack Tree Synthesis S´ ebastien Lˆ e Cong, Sophie Pinchinat Francois Schwarzentruber Univ Rennes - France June 22, 2020 1 / 19

  2. Formal setting Algorithm and demo Theoretical complexity Conclusion Attack reports are difficult to “parse” 2 / 19

  3. Formal setting Algorithm and demo Theoretical complexity Conclusion Attack tree as recipe of attack task steal painting turn security off take painting enter museum disable camera 1 disable camera 2 enter door a enter door b leaf Primitive task OR node Execute one of the subtasks AND node Execute subtasks “concurrently” SAND node Execute subtasks sequentially 3 / 19

  4. Formal setting Algorithm and demo Theoretical complexity Conclusion Our contribution: library-based attack tree synthesis An attack (e.g. log file) Synthesis An attack tree steal painting turn security off enter museum take painting disable camera 1 disable camera 2 enter door a enter door b A library 4 / 19

  5. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 5 / 19

  6. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 6 / 19

  7. Formal setting Algorithm and demo Theoretical complexity Conclusion An attack formalized as a trace: 7 / 19

  8. Formal setting Algorithm and demo Theoretical complexity Conclusion Library A catalog of known attack patterns steal painting turn security off take painting 1 enter museum turn security off disable camera 1 disable camera 2 2 turn security off goto the center blow up a bomb 3 disable camera 1 ¬ monitor 1 to frozen 1 4 8 / 19

  9. Formal setting Algorithm and demo Theoretical complexity Conclusion Semantics of attack trees steal painting turn security off enter museum take painting disable camera 1 disable camera 2 enter door a enter door b attack tree explains trace t if leaf t achieves primitive task (direct notion) OR node at least one child tree explains t AND node t is a merge of traces explained by child trees SAND node t is a sequence of traces explained by child trees 9 / 19

  10. Formal setting Algorithm and demo Theoretical complexity Conclusion Library-based attack tree synthesis A trace Synthesis An attack tree steal painting turn security off take painting enter museum disable camera 1 disable camera 2 enter door a enter door b A library Synthesis specifications : build an attack tree that explains the input trace 1 rests upon the input library 2 10 / 19

  11. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 11 / 19

  12. Formal setting Algorithm and demo Theoretical complexity Conclusion Attack tree synthesis ∼ Parsing Algorithmic principles Trace ∼ Formal word Library attack patterns ∼ Grammar rules Attack tree ∼ Syntactic tree Bottom-up approach ∼ Cocke-Younger-Kasami parsing algorithm 12 / 19

  13. Formal setting Algorithm and demo Theoretical complexity Conclusion Online tool http://attacktreesynthesis.irisa.fr/ 13 / 19

  14. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 14 / 19

  15. Formal setting Algorithm and demo Theoretical complexity Conclusion Theoretical complexity Theorem The library-based attack tree synthesis is NP-complete. Still, polynomial in the length of the input trace! NP-membership: given algorithm NP-hardness: reduction from the Packed Interval Coverage, essentially due to AND operator. Theorem For bounded AND -arity libraries, synthesis is in P . 15 / 19

  16. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 16 / 19

  17. Formal setting Algorithm and demo Theoretical complexity Conclusion Conclusion A formal library-based attack tree synthesis problem An algorithm and an online protoype tool A complete study of the theoretical complexity ⇒ Algorithm essentially optimal Bounded AND -arity in libraries is a realistic assumption 17 / 19

  18. Formal setting Algorithm and demo Theoretical complexity Conclusion Perspectives Theoretical: More abstract attack patterns: first-order features in rules as in (Jhawar et al. 2018) and (Ivanova et al. 2015) Library-based attack tree synthesis for a set of traces Practical: Scalability of the tool, e.g. parsing optimisation techniques Bridge the gap with libraries in practice, e.g. MITRE-ATT&CK 18 / 19

  19. Formal setting Algorithm and demo Theoretical complexity Conclusion Thank you for your attention! 19 / 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Session 12 Tree-based models: tree and rpart Two libraries The tree library is like the

Session 12 Tree-based models: tree and rpart Two libraries The tree library is like the

Session 12 Tree-based models: tree and rpart Two libraries The tree library is like the S-PLUS native library and implements the traditional S-PLUS tree technology The rpart library is due to Beth Atkinson and Terry Therneau of the Mayo

501 views • 28 slides
A Highly Efficient and Comprehensive Image Processing Library for C ++ -based High-Level Synthesis

A Highly Efficient and Comprehensive Image Processing Library for C ++ -based High-Level Synthesis

A Highly Efficient and Comprehensive Image Processing Library for C ++ -based High-Level Synthesis M. Akif zkan, Oliver Reiche, Frank Hannig, and Jrgen Teich Hardware/Software Co-Design, Friedrich-Alexander University Erlangen-Nrnberg FSP

572 views • 45 slides
Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi

Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi

Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi Moritz Lipp Berk Sunar Michael Schwarz 2018: Meltdown Attack? 2 2018: Meltdown Attack? Virtual Address Space User Space CPU Registers

1.14k views • 63 slides
Software Side-Channel Analysis: Attack Synthesis Lucas Bang Dissertation Defense Committee:

Software Side-Channel Analysis: Attack Synthesis Lucas Bang Dissertation Defense Committee:

Software Side-Channel Analysis: Attack Synthesis Lucas Bang Dissertation Defense Committee: Tevfik Bultan (chair) Omer E gecio glu Ben Hardekopf 1 Publications during PhD Aydin, Bang , Bultan. [CAV 2015] Automata-Based Model

2.13k views • 198 slides
ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack

ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack

ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack & GOT Overwrite Attack Dr. Si Chen (schen@wcupa.edu) Review Page 2 ret2libc Attack Page 3 libc C standard library Provides

662 views • 36 slides
Clock Tree Construction based on Arrival Time Constraints Rickard Ewetz, University of Central

Clock Tree Construction based on Arrival Time Constraints Rickard Ewetz, University of Central

Clock Tree Construction based on Arrival Time Constraints Rickard Ewetz, University of Central Florida Cheng-Kok Koh, Purdue University Clock Tree Synthesis Clock Source Objective: Connect source to sinks wire Buffers Wires buffer

310 views • 27 slides
Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification. These involve stratifying or segmenting the predictor space into a number of simple regions. Since the set of splitting rules used to segment the

785 views • 51 slides
Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification. These involve stratifying or segmenting the predictor space into a number of simple regions. Since the set of splitting rules used to segment the

1.08k views • 55 slides
Attack- based Domain Transition Analysis Susan Hinrichs shinrich@ uiuc.edu Prasad Naldurg

Attack- based Domain Transition Analysis Susan Hinrichs shinrich@ uiuc.edu Prasad Naldurg

Attack- based Domain Transition Analysis Susan Hinrichs shinrich@ uiuc.edu Prasad Naldurg prasadn@ microsoft.com SE Linux Symposium Attack- based DTA 1 06 Outline Motivation Review of type enforcement transitions Attack

471 views • 18 slides
Text-to-Image Generation Yu Cheng Text-to-Image Synthesis Text-to-Image Synthesis

Text-to-Image Generation Yu Cheng Text-to-Image Synthesis Text-to-Image Synthesis

Text-to-Image Generation Yu Cheng Text-to-Image Synthesis Text-to-Image Synthesis StackGAN, AttnGAN, TAGAN, ObjGAN Text-to-Video Synthesis GAN-based methods, VAE-based methods, StoryGAN Dialogue-based Image Synthesis

827 views • 45 slides
1 Conceptual Example (III): Less formally (II) Or-tree-based Search n If all

1 Conceptual Example (III): Less formally (II) Or-tree-based Search n If all

2.4.3 Or-tree-based Search Formal Definitions (I) Or-tree-based Search Model A = ( S , T ): Basic Idea: n Prob set of problem descriptions If every solution is okay, represent the different n Altern Prob +

190 views • 3 slides
Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras Side Channel Analysis Electro magnetic Radiation Fault injection Power consumption Timing channels Preventing Side Channel Attacks is

468 views • 34 slides
Genetics-based Machine Learning and Behaviour Based Robotics: A New Synthesis

Genetics-based Machine Learning and Behaviour Based Robotics: A New Synthesis

Genetics-based Machine Learning and Behaviour Based Robotics: A New Synthesis Genetics-based Machine Learning and Behavior Based Robotics: A New Synthesis, Marco Dorigo, Uwe Schnepf, IEEE Transactions on System, MAn, and Cybernetics,

348 views • 34 slides
15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are

15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are

15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are based on tree structures. 15.1 Motivation for Tree-based Methods Translation Examples A Generalized Rule josei wa ringo wo tabeta NP 1 wa NP 2

648 views • 15 slides
Automatic Library Compilation and Proof Tree Visualisation for Coq Proof General Hendrik Tews

Automatic Library Compilation and Proof Tree Visualisation for Coq Proof General Hendrik Tews

Automatic Library Compilation Proof Tree Visualisation Conclusion Automatic Library Compilation and Proof Tree Visualisation for Coq Proof General Hendrik Tews Technische Universit at Dresden Third Coq Workshop, August 26, 2011 Hendrik

385 views • 16 slides
CAS CS 460/660 Introduction to Database Systems Tree Based Indexing: B+-tree Slides from UC

CAS CS 460/660 Introduction to Database Systems Tree Based Indexing: B+-tree Slides from UC

CAS CS 460/660 Introduction to Database Systems Tree Based Indexing: B+-tree Slides from UC Berkeley 1.1 How to Build Tree-Structured Indexes Tree-structured indexing techniques support both range searches and equality searches . Two

668 views • 36 slides
Evaluating Leadership Development Programs: Easing into Levels 3 & 4 Presenters: Cheryl

Evaluating Leadership Development Programs: Easing into Levels 3 & 4 Presenters: Cheryl

OPM Workshop Evaluating Leadership Development Programs: Easing into Levels 3 & 4 Presenters: Cheryl Ndunguru & Yadira Guerrero Senior Executive Resources and Performance Management, Work-Life and Leadership and Executive Development

730 views • 68 slides
OBAMA PRESIDENTIAL CENTER INTRODUCTION 2 INTRODUCTION 3 ARCHITECTURAL DESIGN 4 ARCHITECTURAL

OBAMA PRESIDENTIAL CENTER INTRODUCTION 2 INTRODUCTION 3 ARCHITECTURAL DESIGN 4 ARCHITECTURAL

OBAMA PRESIDENTIAL CENTER INTRODUCTION 2 INTRODUCTION 3 ARCHITECTURAL DESIGN 4 ARCHITECTURAL DESIGN 5 6 ARCHITECTURAL DESIGN 7 ARCHITECTURAL DESIGN 8 ARCHITECTURAL DESIGN 9 ARCHITECTURAL DESIGN 10 ARCHITECTURAL DESIGN 11 ARCHITECTURAL

580 views • 29 slides
Efficient Rank Join with Aggregation Constraints Min Xie , Laks V.S. Lakshmanan , Peter

Efficient Rank Join with Aggregation Constraints Min Xie , Laks V.S. Lakshmanan , Peter

Efficient Rank Join with Aggregation Constraints Min Xie , Laks V.S. Lakshmanan , Peter Wood University of British Columbia Birkbeck, University of London University of British Columbia / Birkbeck, University of London 1

552 views • 40 slides
Approaches Towards Unified Models for Integrating Web Knowledge Bases Maria Koutraki Joint work

Approaches Towards Unified Models for Integrating Web Knowledge Bases Maria Koutraki Joint work

Approaches Towards Unified Models for Integrating Web Knowledge Bases Maria Koutraki Joint work with: Nicoleta Preda, Dan Vodislav Paris, 26/10/2016 Koutraki Maria 2 Motivation Unstructured Data Koutraki Maria 3 Motivation

723 views • 60 slides
Musical Interfaces and Sequencers Graduate School of Culture Technology, KAIST Juhan Nam Musical

Musical Interfaces and Sequencers Graduate School of Culture Technology, KAIST Juhan Nam Musical

2018 Fall CTP431: Music and Audio Computing Musical Interfaces and Sequencers Graduate School of Culture Technology, KAIST Juhan Nam Musical Instrument Performers interact with instruments in various ways - key striking, plucking, blowing,

462 views • 17 slides
CTP431- Music and Audio Computing Musical Interface Graduate School of Culture Technology KAIST

CTP431- Music and Audio Computing Musical Interface Graduate School of Culture Technology KAIST

CTP431- Music and Audio Computing Musical Interface Graduate School of Culture Technology KAIST Juhan Nam 1 Introduction Interface + Tone Generator 2 Introduction Musical Interface Muscle movement to sound generation Basic

630 views • 14 slides
live coding music robotic pianos vitor guerra rolla postdoctoral fellow summary

live coding music robotic pianos vitor guerra rolla postdoctoral fellow summary

live coding music robotic pianos vitor guerra rolla postdoctoral fellow summary introduction chuck programming language MIDI protocol pre-loaded code robotic pianos => instruments live coding live coding

513 views • 15 slides
MIDI Synthesizer Kyle, Peter, and Eric Motivation Interest in digital audio applications .

MIDI Synthesizer Kyle, Peter, and Eric Motivation Interest in digital audio applications .

MIDI Synthesizer Kyle, Peter, and Eric Motivation Interest in digital audio applications . A good way to learn about the hardware and software aspects of system design Interactive and fun demo. Nice way to learn about an

389 views • 15 slides

More recommend