Reference : How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems |
Scientific congresses, symposiums and conference proceedings : Paper published in a book | |||
Engineering, computing & technology : Computer science | |||
http://hdl.handle.net/10993/23814 | |||
How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems | |
English | |
Gadyatskaya, Olga ![]() | |
2016 | |
Proc. of GraMSec 2015 | |
Springer | |
LNCS 9390 | |
Yes | |
The Second International Workshop on Graphical Models for Security | |
13 July 2015 | |
[en] Attacks and defences ; attack and defence generation ; automating risk assessment | |
[en] Recently security researchers have started to look into au-
tomated generation of attack trees from socio-technical system models. The obvious next step in this trend of automated risk analysis is au- tomating the selection of security controls to treat the detected threats. However, the existing socio-technical models are too abstract to repre- sent all security controls recommended by practitioners and standards. In this paper we propose an attack-defence model, consisting of a set of attack-defence bundles, to be generated and maintained with the socio- technical model. The attack-defence bundles can be used to synthesise attack-defence trees directly from the model to o er basic attack-defence analysis, but also they can be used to select and maintain the security controls that cannot be handled by the model itself. | |
Interdisciplinary Centre for Security, Reliability and Trust (SnT) | |
TREsPASS | |
Researchers ; Professionals | |
http://hdl.handle.net/10993/23814 | |
9390 | |
FP7 ; 318003 TREsPASS Technology-Supported Risk Estimation by Predictive Assessment of Socio-technical Security | |
FnR ; FNR5809105 > Sjouke Mauw > ADT2P > Attack-Defense Trees: Theory Meets Practice > 01/07/2014 > 30/06/2017 > 2013 |
File(s) associated to this reference | ||||||||||||||
Fulltext file(s):
| ||||||||||||||
All documents in ORBilu are protected by a user license.