New Directions in Attack Tree Research: Catching up with Industrial Needs

Gadyatskaya, Olga; Trujillo Rasua, Rolando

doi:10.1007/978-3-319-74860-3_9

Reference : New Directions in Attack Tree Research: Catching up with Industrial Needs


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	Focus Areas :	Security, Reliability and Trust
	To cite this reference:	http://hdl.handle.net/10993/33731

Title :	New Directions in Attack Tree Research: Catching up with Industrial Needs
Language :	English
Author, co-author :	Gadyatskaya, Olga [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Trujillo Rasua, Rolando [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Publication date :	Jan-2018
Main document title :	Proceedings of the 4th International Workshop on Graphical Models for Security
Author, co-author :	Mauw, Sjouke
Publisher :	Springer
Collection and collection volume :	Lecture Notes in Computer Science 10744
Peer reviewed :	Yes
Audience :	International
Event name :	The 4th International Workshop on Graphical Models for Security (GraMSec)
Event date :	21-08-2017
Event place (city) :	Santa Barbara
Event country :	USA
Keywords :	[en] attack trees ; security risk management ; industry
Abstract :	[en] Attack trees provide a systematic way of characterizing diverse system threats. Their strengths arise from the combination of an intuitive representation of possible attacks and availability of formal mathematical frameworks for analyzing them in a qualitative or a quantitative manner. Indeed, the mathematical frameworks have become a large focus of attack tree research. However, practical applications of attack trees in industry largely remain a tedious and error-prone exercise. Recent research directions in attack trees, such as attack tree generation, attempt to close this gap and to improve the attack tree state-of-thepractice. In this position paper we outline the recurrent challenges in manual tree design within industry, and we overview the recent research results in attack trees that help the practitioners. For the challenges that have not yet been addressed by the community, we propose new promising research directions.
Research centres :	Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Other
Name of the research project :	ADT2P
Target :	Researchers ; Professionals ; Students ; Others
Permalink :	http://hdl.handle.net/10993/33731
DOI :	10.1007/978-3-319-74860-3_9
Other URL :	https://link.springer.com/chapter/10.1007%2F978-3-319-74860-3_9
Framework Programme / European Project :	FP7 ; 318003 - TRESPASS - Technology-supported Risk Estimation by Predictive Assessment of Socio-technical Security
FnR project :	FnR ; FNR5809105 > Sjouke Mauw > ADT2P > Attack-Defence Trees: Theory Meets Practice > 01/07/2014 > 30/06/2017 > 2013

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Limited access	GraMSec-2017-CR.pdf		Author postprint	165.78 kB	Request a copy

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices