Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is; typical metrics being the most likely attack, the cheapest, or the most damaging one. However, existing methods are only geared towards specific metrics or do not work on general attack trees. This paper classifies attack trees in two dimensions: proper trees vs. directed acyclic graphs (i.e. with shared subtrees); and static vs. dynamic gates. For three out of these four classes, we propose novel algorithms that work over a generic attribute domain, encompassing a large number of concrete security metrics defined on the attack tree semantics; dynamic attack trees with directed acyclic graph structure are left as an open problem. We also analyse the computational complexity of our methods.
翻译:提出了多种数量攻击树分析分析方法。这些算法计算了相关的安全指标,即量化系统安全程度的性能指标;典型指标最有可能攻击、最便宜或最有害;然而,现有方法仅针对特定指标,或不适用于一般攻击树。本文将攻击树分为两个层面:适当的树木与定向的单流图(即与共有的亚树)和静态对动态门。在这四类中,有三类,我们提出新的算法,涉及通用属性领域,包括攻击树的语义定义的大量具体安全指标;有定向圆形图结构的动态攻击树作为一个未解决的问题。我们还分析了我们方法的计算复杂性。
相关内容
微信扫码咨询专知VIP会员