Paper published in a book (Scientific congresses, symposiums and conference proceedings)
How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems
Gadyatskaya, Olga
2016In Proc. of GraMSec 2015
Peer reviewed
 

Files


Full Text
GraMSec-2015-CR.pdf
Author postprint (270.12 kB)
Request a copy

All documents in ORBilu are protected by a user license.

Send to



Details



Keywords :
Attacks and defences; attack and defence generation; automating risk assessment
Abstract :
[en] Recently security researchers have started to look into au- tomated generation of attack trees from socio-technical system models. The obvious next step in this trend of automated risk analysis is au- tomating the selection of security controls to treat the detected threats. However, the existing socio-technical models are too abstract to repre- sent all security controls recommended by practitioners and standards. In this paper we propose an attack-defence model, consisting of a set of attack-defence bundles, to be generated and maintained with the socio- technical model. The attack-defence bundles can be used to synthesise attack-defence trees directly from the model to o er basic attack-defence analysis, but also they can be used to select and maintain the security controls that cannot be handled by the model itself.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust (SnT)
Disciplines :
Computer science
Author, co-author :
Gadyatskaya, Olga ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
External co-authors :
no
Language :
English
Title :
How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems
Publication date :
2016
Event name :
The Second International Workshop on Graphical Models for Security
Event date :
13 July 2015
Main work title :
Proc. of GraMSec 2015
Publisher :
Springer
Collection name :
LNCS 9390
Peer reviewed :
Peer reviewed
European Projects :
FP7 - 318003 - TRESPASS - Technology-supported Risk Estimation by Predictive Assessment of Socio-technical Security
FnR Project :
FNR5809105 - Attack-defence Trees: Theory Meets Practice, 2013 (01/07/2014-30/06/2017) - Sjouke Mauw
Name of the research project :
TREsPASS
Funders :
CE - Commission Européenne [BE]
Commentary :
9390
Available on ORBilu :
since 22 January 2016

Statistics


Number of views
90 (5 by Unilu)
Number of downloads
0 (0 by Unilu)

Scopus citations®
 
10
Scopus citations®
without self-citations
4
OpenCitations
 
9
WoS citations
 
8

Bibliography


Similar publications



Contact ORBilu