Studying cyber security threats to web platforms using attack tree diagrams
| Title | Studying cyber security threats to web platforms using attack tree diagrams |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Petrică, G., Axinte, S. D., Bacivarov, I. C., Firoiu, M., Mihai, I. C. |
| Conference Name | 2017 9th International Conference on Electronics, Computers and Artificial Intelligence (ECAI) |
| Date Published | jun |
| Keywords | artificial intelligence security, attack tree, attack tree diagrams, Attack Tree method, common vulnerabilities, computer security, computer security threats, computer system, Computers, cyber security threats, cyber-attack, global reference system, graphical analysis, Human Behavior, Information systems, information systems designers, information technology, Internet, Metrics, Open Source Software, Organizations, pubcrawl, Resiliency, Scalability, security of data, security personnel, security threats, trees (mathematics), Web platform, Web platforms, WordPress platform, WordPress vulnerabilities |
| Abstract | Used by both information systems designers and security personnel, the Attack Tree method provides a graphical analysis of the ways in which an entity (a computer system or network, an entire organization, etc.) can be attacked and indicates the countermeasures that can be taken to prevent the attackers to reach their objective. In this paper, we built an Attack Tree focused on the goal "compromising the security of a Web platform", considering the most common vulnerabilities of the WordPress platform identified by CVE (Common Vulnerabilities and Exposures), a global reference system for recording information regarding computer security threats. Finally, based on the likelihood of the attacks, we made a quantitative analysis of the probability that the security of the Web platform can be compromised. |
| URL | http://ieeexplore.ieee.org/document/8166456/ |
| DOI | 10.1109/ECAI.2017.8166456 |
| Citation Key | petrica_studying_2017 |
- information technology
- WordPress vulnerabilities
- WordPress platform
- Web platforms
- Web platform
- trees (mathematics)
- security threats
- security personnel
- security of data
- Scalability
- Resiliency
- pubcrawl
- Organizations
- Open Source Software
- Metrics
- internet
- artificial intelligence security
- information systems designers
- Information systems
- Human behavior
- graphical analysis
- global reference system
- cyber-attack
- cyber security threats
- Computers
- computer system
- computer security threats
- computer security
- common vulnerabilities
- Attack Tree method
- attack tree diagrams
- attack tree