Parametric Analyses of Attack-Fault Trees
Title | Parametric Analyses of Attack-Fault Trees |
Publication Type | Conference Paper |
Year of Publication | 2019 |
Authors | André, Étienne, Lime, Didier, Ramparison, Mathias, Stoelinga, Mariëlle |
Conference Name | 2019 19th International Conference on Application of Concurrency to System Design (ACSD) |
Date Published | June 2019 |
Publisher | IEEE |
ISBN Number | 978-1-7281-3843-5 |
Keywords | attack-fault trees, Automata, automata theory, composability, Concurrency, connected devices, Cost accounting, CPS, cyber physical systems, Cyber-physical systems, fault scenarios, fault trees, formal verification, imitator, Logic gates, Metrics, model-checker IMITATOR, parameter values, parametric analyses, parametric timed automata, parametric weighted timed automata, power plants, pubcrawl, resilience, Resiliency, risk analysis, risk assessment, Safety, safety engineering, security, security of data, tree-based formalism, trees (mathematics), Unified modeling language |
Abstract | Risk assessment of cyber-physical systems, such as power plants, connected devices and IT-infrastructures has always been challenging: safety (i.e., absence of unintentional failures) and security (i. e., no disruptions due to attackers) are conditions that must be guaranteed. One of the traditional tools used to help considering these problems is attack trees, a tree-based formalism inspired by fault trees, a well-known formalism used in safety engineering. In this paper we define and implement the translation of attack-fault trees (AFTs) to a new extension of timed automata, called parametric weighted timed automata. This allows us to parametrize constants such as time and discrete costs in an AFT and then, using the model-checker IMITATOR, to compute the set of parameter values such that a successful attack is possible. Using the different sets of parameter values computed, different attack and fault scenarios can be deduced depending on the budget, time or computation power of the attacker, providing helpful data to select the most efficient counter-measure. |
URL | https://ieeexplore.ieee.org/document/8843643 |
DOI | 10.1109/ACSD.2019.00008 |
Citation Key | andre_parametric_2019 |
- risk assessment
- parametric analyses
- parametric timed automata
- parametric weighted timed automata
- power plants
- pubcrawl
- resilience
- Resiliency
- risk analysis
- parameter values
- Safety
- safety engineering
- security
- security of data
- tree-based formalism
- trees (mathematics)
- Unified modeling language
- cyber-physical systems
- automata
- automata theory
- composability
- Concurrency
- connected devices
- Cost accounting
- CPS
- cyber physical systems
- attack-fault trees
- fault scenarios
- fault trees
- formal verification
- imitator
- Logic gates
- Metrics
- model-checker IMITATOR