Top

Published in:

2017 | OriginalPaper | Chapter

SPTool – Equivalence Checker for \(\mathtt {SAND}\) Attack Trees

Authors : Barbara Kordy, Piotr Kordy, Yoann van den Boom

Published in: Risks and Security of Internet and Systems

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

A \(\mathtt {SAND}\) attack tree is a graphical model decomposing an attack scenario into basic actions to be executed by the attacker. \(\mathtt {SAND}\) attack trees extend classical attack trees by including the sequential conjunctive operator (\(\mathtt {SAND}\)) to the formalism. They thus allow to differentiate actions that need to be executed sequentially from those that can be performed in parallel. Since several structurally different \(\mathtt {SAND}\) attack trees can represent the same attack scenario, it is important to be able to decide which \(\mathtt {SAND}\) attack trees are equivalent.

SPTool is free, open source software for checking equivalence of \(\mathtt {SAND}\) attack trees and computing their canonical forms. It relies on term rewriting techniques and an equational theory axiomatizing SAND attack trees.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter An n-Sided Polygonal Model to Calculate the Impact of Cyber Security Events

next chapter Formal Verification of a Memory Allocation Module of Contiki with Frama-C: A Case Study

Amenaza: SecurITree. http://www.amenaza.com/SS-what_is.php (2001–2012)

Clavel, M., Durán, F., Eker, S., Lincoln, P., Martí-Oliet, N., Meseguer, J., Talcott, C.: All About Maude - A High-performance Logical Framework: How to Specify Program and Verify Systems in Rewriting Logic, vol. 4350. Springer, Heidelberg (2007)MATH

Gadyatskaya, O., Jhawar, R., Kordy, P., Lounis, K., Mauw, S., Trujillo-Rasua, R.: Attack trees for practical security assessment: ranking of attack scenarios with ADTool 2.0. In: Agha, G., Houdt, B. (eds.) QEST 2016. LNCS, vol. 9826, pp. 159–162. Springer, Cham (2016). doi:10.1007/978-3-319-43425-4_10 CrossRef

Isograph: AttackTree+. http://www.isograph.com/software/attacktree/

Jhawar, R., Kordy, B., Mauw, S., Radomirović, S., Trujillo-Rasua, R.: Attack trees with sequential conjunction. In: Federrath, H., Gollmann, D. (eds.) SEC 2015. IAICT, vol. 455, pp. 339–353. Springer, Cham (2015). doi:10.1007/978-3-319-18467-8_23 CrossRef

Kordy, B., Mauw, S., Radomirovic, S., Schweitzer, P.: Attack-defense trees. J. Log. Comput. 24(1), 55–87 (2014)MathSciNetCrossRefMATH

Kordy, B., Piètre-Cambacédès, L., Schweitzer, P.: DAG-based attack and defense modeling: don’t miss the forest for the attack trees. Comput. Sci. Rev. 13–14, 1–38 (2014)CrossRefMATH

Kordy, B., Pouly, M., Schweitzer, P.: Probabilistic reasoning with graphical security models. Inf. Sci. 342, 111–131 (2016)MathSciNetCrossRef

Mauw, S., Oostdijk, M.: Foundations of attack trees. In: Won, D.H., Kim, S. (eds.) ICISC 2005. LNCS, vol. 3935, pp. 186–198. Springer, Heidelberg (2006). doi:10.1007/11734727_17 CrossRef

10.

Paul, S.: Towards automating the construction maintenance of attack trees: a feasibility study. In: Kordy, B., Mauw, S., Pieters, W. (eds.) GraMSec 2014, EPTCS, vol. 148, pp. 31–46 (2014)

11.

Pinchinat, S., Acher, M., Vojtisek, D.: ATSyRa: an integrated environment for synthesizing attack trees. In: Mauw, S., Kordy, B., Jajodia, S. (eds.) GraMSec 2015. LNCS, vol. 9390, pp. 97–101. Springer, Cham (2016). doi:10.1007/978-3-319-29968-6_7 CrossRef

Title: SPTool – Equivalence Checker for Attack Trees
Authors: Barbara Kordy
Piotr Kordy
Yoann van den Boom
Publisher: Springer International Publishing
Book: Risks and Security of Internet and Systems
Print ISBN: 978-3-319-54875-3

Electronic ISBN: 978-3-319-54876-0

Copyright Year: 2017
DOI: https://doi.org/10.1007/978-3-319-54876-0_8

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner