Expected cost analysis of attack-defense trees

Julia Eisentraut; Jan Křetínský

doi:10.1007/978-3-030-30281-8_12

Expected cost analysis of attack-defense trees

Julia Eisentraut, Jan Křetínský

Informatics 7 - Associate Professorship of Formal Methods for Software Reliability

Technical University of Munich

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Attack-defense trees () are an established formalism for assessing system security. We extend with costs and success probabilities of basic events. We design a framework to analyze the probability of a successful attack/defense, its expected cost, and its probability for a given maximum cost. On the conceptual level, we show that a proper analysis requires to model the problem using sequential decision making and non-tree structures, in contrast to classical analysis. On the technical level, we provide three algorithms: (i) reduction to PRISM-games, (ii) dedicated game solution utilizing the structure of the problem, and (iii) direct analysis of for certain settings. We demonstrate the framework and compare the solutions on several examples.

Original language	English
Title of host publication	Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings
Editors	David Parker, Verena Wolf
Publisher	Springer Verlag
Pages	203-221
Number of pages	19
ISBN (Print)	9783030302801
DOIs	https://doi.org/10.1007/978-3-030-30281-8_12
State	Published - 2019
Event	16th International Conference on Quantitative Evaluation of Systems, QEST 2019 - Glasgow, United Kingdom Duration: 10 Sep 2019 → 12 Sep 2019

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	11785 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	16th International Conference on Quantitative Evaluation of Systems, QEST 2019
Country/Territory	United Kingdom
City	Glasgow
Period	10/09/19 → 12/09/19

Access to Document

10.1007/978-3-030-30281-8_12

Cite this

Eisentraut, J., & Křetínský, J. (2019). Expected cost analysis of attack-defense trees. In D. Parker, & V. Wolf (Eds.), Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings (pp. 203-221). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11785 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-030-30281-8_12

Eisentraut, Julia ; Křetínský, Jan. / Expected cost analysis of attack-defense trees. Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings. editor / David Parker ; Verena Wolf. Springer Verlag, 2019. pp. 203-221 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{016ba18224044a6d8c04081353d06761,

title = "Expected cost analysis of attack-defense trees",

abstract = "Attack-defense trees () are an established formalism for assessing system security. We extend with costs and success probabilities of basic events. We design a framework to analyze the probability of a successful attack/defense, its expected cost, and its probability for a given maximum cost. On the conceptual level, we show that a proper analysis requires to model the problem using sequential decision making and non-tree structures, in contrast to classical analysis. On the technical level, we provide three algorithms: (i) reduction to PRISM-games, (ii) dedicated game solution utilizing the structure of the problem, and (iii) direct analysis of for certain settings. We demonstrate the framework and compare the solutions on several examples.",

author = "Julia Eisentraut and Jan K{\v r}et{\'i}nsk{\'y}",

note = "Publisher Copyright: {\textcopyright} Springer Nature Switzerland AG 2019.; 16th International Conference on Quantitative Evaluation of Systems, QEST 2019 ; Conference date: 10-09-2019 Through 12-09-2019",

year = "2019",

doi = "10.1007/978-3-030-30281-8_12",

language = "English",

isbn = "9783030302801",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "203--221",

editor = "David Parker and Verena Wolf",

booktitle = "Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings",

}

Eisentraut, J & Křetínský, J 2019, Expected cost analysis of attack-defense trees. in D Parker & V Wolf (eds), Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 11785 LNCS, Springer Verlag, pp. 203-221, 16th International Conference on Quantitative Evaluation of Systems, QEST 2019, Glasgow, United Kingdom, 10/09/19. https://doi.org/10.1007/978-3-030-30281-8_12

Expected cost analysis of attack-defense trees. / Eisentraut, Julia; Křetínský, Jan.
Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings. ed. / David Parker; Verena Wolf. Springer Verlag, 2019. p. 203-221 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11785 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Expected cost analysis of attack-defense trees

AU - Eisentraut, Julia

AU - Křetínský, Jan

N1 - Publisher Copyright: © Springer Nature Switzerland AG 2019.

PY - 2019

Y1 - 2019

N2 - Attack-defense trees () are an established formalism for assessing system security. We extend with costs and success probabilities of basic events. We design a framework to analyze the probability of a successful attack/defense, its expected cost, and its probability for a given maximum cost. On the conceptual level, we show that a proper analysis requires to model the problem using sequential decision making and non-tree structures, in contrast to classical analysis. On the technical level, we provide three algorithms: (i) reduction to PRISM-games, (ii) dedicated game solution utilizing the structure of the problem, and (iii) direct analysis of for certain settings. We demonstrate the framework and compare the solutions on several examples.

AB - Attack-defense trees () are an established formalism for assessing system security. We extend with costs and success probabilities of basic events. We design a framework to analyze the probability of a successful attack/defense, its expected cost, and its probability for a given maximum cost. On the conceptual level, we show that a proper analysis requires to model the problem using sequential decision making and non-tree structures, in contrast to classical analysis. On the technical level, we provide three algorithms: (i) reduction to PRISM-games, (ii) dedicated game solution utilizing the structure of the problem, and (iii) direct analysis of for certain settings. We demonstrate the framework and compare the solutions on several examples.

UR - http://www.scopus.com/inward/record.url?scp=85072865508&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-30281-8_12

DO - 10.1007/978-3-030-30281-8_12

M3 - Conference contribution

AN - SCOPUS:85072865508

SN - 9783030302801

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 203

EP - 221

BT - Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings

A2 - Parker, David

A2 - Wolf, Verena

PB - Springer Verlag

T2 - 16th International Conference on Quantitative Evaluation of Systems, QEST 2019

Y2 - 10 September 2019 through 12 September 2019

ER -

Eisentraut J, Křetínský J. Expected cost analysis of attack-defense trees. In Parker D, Wolf V, editors, Quantitative Evaluation of Systems - 16th International Conference, QEST 2019, Proceedings. Springer Verlag. 2019. p. 203-221. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-30281-8_12

Expected cost analysis of attack-defense trees

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this