QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to
Verification

D 2024

QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification

DORFHUBER, Florian Sebastian; Julia EISENTRAUT; Katharina KLIOBA a Jan KŘETÍNSKÝ

Základní údaje

Originální název

QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification

Autoři

DORFHUBER, Florian Sebastian; Julia EISENTRAUT; Katharina KLIOBA a Jan KŘETÍNSKÝ

Vydání

Calgary, Canada, International Conference on Quantitative Evaluation of Systems and Formal Modeling and Analysis of Timed Systems, QEST+FORMATS 2024, od s. 52-71, 20 s. 2024

Nakladatel

Springer

Další údaje

Jazyk

angličtina

Typ výsledku

Stať ve sborníku

Obor

10201 Computer sciences, information science, bioinformatics

Stát vydavatele

Švýcarsko

Utajení

není předmětem státního či obchodního tajemství

Forma vydání

elektronická verze "online"

Impakt faktor

Impact factor: 0.402 v roce 2005

Označené pro přenos do RIV

Ano

Kód RIV

RIV/00216224:14330/24:00136487

Organizační jednotka

Fakulta informatiky

ISBN

978-3-031-68415-9

ISSN

DOI

https://doi.org/10.1007/978-3-031-68416-6_4

UT WoS

001312954200004

Klíčová slova anglicky

attack-defense tree

Štítky

firank_B

Příznaky

Mezinárodní význam, Recenzováno

Změněno: 26. 3. 2025 16:13, RNDr. Pavel Šmerk, Ph.D.

Anotace

V originále

Ranking risks and countermeasures is one of the foremost goals of quantitative security analysis. One of the popular frameworks, used also in industrial practice, for this task are attack-defense trees. Standard quantitative analyses available for attack-defense trees can distinguish likely from unlikely vulnerabilities. We provide a tool that allows for easy synthesis and analysis of those models, also featuring probabilities, costs and time. Furthermore, it provides a variety of interfaces to existing model checkers and analysis tools. Unfortunately, currently available tools rely on precise quantitative inputs (probabilities, timing, or costs of attacks), which are rarely available. Instead, only statistical, imprecise information is typically available, leaving us with probably approximately correct (PAC) estimates of the real quantities. As a part of our tool, we extend the standard analysis techniques so they can handle the PAC input and yield rigorous bounds on the imprecision and uncertainty of the final result of the analysis.

Návaznosti

MUNI/I/1757/2021, interní kód MU

Název: MUNI Award in Science and Humanities (Akronym: Křetínský)

Investor: Masarykova univerzita, MUNI Award in Science and Humanities, MASH - MUNI Award in Science and Humanities

Citovat

DORFHUBER, Florian Sebastian; Julia EISENTRAUT; Katharina KLIOBA a Jan KŘETÍNSKÝ. QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification. Online. In International Conference on Quantitative Evaluation of Systems and Formal Modeling and Analysis of Timed Systems, QEST+FORMATS 2024. Calgary, Canada: Springer, 2024, s. 52-71. ISBN 978-3-031-68415-9. Dostupné z: https://doi.org/10.1007/978-3-031-68416-6_4.

@inproceedings{2418057,
   author = {Dorfhuber, Florian Sebastian and Eisentraut, Julia and Klioba, Katharina and Křetínský, Jan},
   address = {Calgary, Canada},
   booktitle = {International Conference on Quantitative Evaluation of Systems and Formal Modeling and Analysis of Timed Systems, QEST+FORMATS 2024},
   doi = {https://doi.org/10.1007/978-3-031-68416-6_4},
   keywords = {attack-defense tree},
   howpublished = {elektronická verze "online"},
   language = {eng},
   location = {Calgary, Canada},
   isbn = {978-3-031-68415-9},
   pages = {52-71},
   publisher = {Springer},
   title = {QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification},
   year = {2024}
}

TY  - CONF
ID  - 2418057
AU  - Dorfhuber, Florian Sebastian - Eisentraut, Julia - Klioba, Katharina - Křetínský, Jan
PY  - 2024
TI  - QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification
PB  - Springer
CY  - Calgary, Canada
SN  - 9783031684159
KW  - attack-defense tree
N2  - Ranking risks and countermeasures is one of the foremost goals of quantitative security analysis. One of the popular frameworks, used also in industrial practice, for this task are attack-defense trees. Standard quantitative analyses available for attack-defense trees can distinguish likely from unlikely vulnerabilities. We provide a tool that allows for easy synthesis and analysis of those models, also featuring probabilities, costs and time. Furthermore, it provides a variety of interfaces to existing model checkers and analysis tools. Unfortunately, currently available tools rely on precise quantitative inputs (probabilities, timing, or costs of attacks), which are rarely available. Instead, only statistical, imprecise information is typically available, leaving us with probably approximately correct (PAC) estimates of the real quantities. As a part of our tool, we extend the standard analysis techniques so they can handle the PAC input and yield rigorous bounds on the imprecision and uncertainty of the final result of the analysis.
ER  -

DORFHUBER, Florian Sebastian; Julia EISENTRAUT; Katharina KLIOBA a Jan KŘETÍNSKÝ. QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification. Online. In \textit{International Conference on Quantitative Evaluation of Systems and Formal Modeling and Analysis of Timed Systems, QEST+FORMATS 2024}. Calgary, Canada: Springer, 2024, s.~52-71. ISBN~978-3-031-68415-9. Dostupné z: https://doi.org/10.1007/978-3-031-68416-6\_{}4.

Přehled o publikaci