Reference : New Directions in Attack Tree Research: Catching up with Industrial Needs
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
Security, Reliability and Trust
http://hdl.handle.net/10993/33731
New Directions in Attack Tree Research: Catching up with Industrial Needs
English
Gadyatskaya, Olga mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Trujillo Rasua, Rolando mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
In press
Proceedings of the 4th International Workshop on Graphical Models for Security
Mauw, Sjouke mailto
Yes
International
The 4th International Workshop on Graphical Models for Security (GraMSec)
21-08-2017
Santa Barbara
USA
[en] attack trees ; security risk management ; industry
[en] Attack trees provide a systematic way of characterizing diverse
system threats. Their strengths arise from the combination of an intuitive
representation of possible attacks and availability of formal mathematical
frameworks for analyzing them in a qualitative or a quantitative
manner. Indeed, the mathematical frameworks have become a large focus
of attack tree research. However, practical applications of attack trees in
industry largely remain a tedious and error-prone exercise.
Recent research directions in attack trees, such as attack tree generation,
attempt to close this gap and to improve the attack tree state-of-thepractice.
In this position paper we outline the recurrent challenges in
manual tree design within industry, and we overview the recent research
results in attack trees that help the practitioners. For the challenges
that have not yet been addressed by the community, we propose new
promising research directions.
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Other
Researchers ; Professionals ; Students ; Others
http://hdl.handle.net/10993/33731
FP7 ; 318003 - TRESPASS - Technology-supported Risk Estimation by Predictive Assessment of Socio-technical Security
FnR ; FNR5809105 > Sjouke Mauw > ADT2P > Attack-Defence Trees: Theory Meets Practice > 01/07/2014 > 30/06/2017 > 2013

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Limited access
GraMSec-2017-CR.pdfAuthor postprint165.78 kBRequest a copy

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.