How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems

Gadyatskaya, Olga

Reference : How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	To cite this reference:	http://hdl.handle.net/10993/23814

Title :	How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems
Language :	English
Author, co-author :	Gadyatskaya, Olga [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) >]
Publication date :	2016
Main document title :	Proc. of GraMSec 2015
Publisher :	Springer
Collection and collection volume :	LNCS 9390
Peer reviewed :	Yes
Event name :	The Second International Workshop on Graphical Models for Security
Event date :	13 July 2015
Keywords :	[en] Attacks and defences ; attack and defence generation ; automating risk assessment
Abstract :	[en] Recently security researchers have started to look into au- tomated generation of attack trees from socio-technical system models. The obvious next step in this trend of automated risk analysis is au- tomating the selection of security controls to treat the detected threats. However, the existing socio-technical models are too abstract to repre- sent all security controls recommended by practitioners and standards. In this paper we propose an attack-defence model, consisting of a set of attack-defence bundles, to be generated and maintained with the socio- technical model. The attack-defence bundles can be used to synthesise attack-defence trees directly from the model to o er basic attack-defence analysis, but also they can be used to select and maintain the security controls that cannot be handled by the model itself.
Research centres :	Interdisciplinary Centre for Security, Reliability and Trust (SnT)
Name of the research project :	TREsPASS
Target :	Researchers ; Professionals
Permalink :	http://hdl.handle.net/10993/23814
Commentary :	9390
Framework Programme / European Project :	FP7 ; 318003 TREsPASS Technology-Supported Risk Estimation by Predictive Assessment of Socio-technical Security
FnR project :	FnR ; FNR5809105 > Sjouke Mauw > ADT2P > Attack-Defense Trees: Theory Meets Practice > 01/07/2014 > 30/06/2017 > 2013

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Limited access	GraMSec-2015-CR.pdf		Author postprint	263.78 kB	Request a copy

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices