An attack tree template based on feature diagram hierarchy

Abstract A Software Ecosystem (SECO) refers to a collection of software products with some degree of symbiotic relationship. SOLAR is a Virtual Learning Environment (VLE) that enables the publication of courses and interaction with them among its various users. In this context, SOLAR SECO emerges, where diverse situations of software evolution and maintenance are part of its development process. The aim of this paper is to discuss the dynamic variability of SOLAR educational software ecosystem and software modeling. As an example, dynamic variability aspects of the feature model of SOLAR VLE discussion forum functionality were discussed, one of the most widely used services within SOLAR SECO. As a major conclusion of this work, we identified that the use of the contextual feature diagram allows the study of the dynamic aspects of a system, even more supported by tools to support automatic measurement collection.

Download Full-text

Industrial Control System Intrusion Detection Model based on LSTM & Attack Tree

2020 17th International Computer Conference on Wavelet Active Media Technology and Information Processing (ICCWAMTIP) ◽

10.1109/iccwamtip51612.2020.9317477 ◽

2020 ◽

Author(s):

Fan Xingjie ◽

Wan Guogenp ◽

Zhang ShiBIN ◽

ChenHAO

Keyword(s):

Control System ◽

Intrusion Detection ◽

Industrial Control System ◽

Industrial Control ◽

Attack Tree ◽

Detection Model ◽

Model Based

Download Full-text

Attack tree analysis

Risk, Reliability and Safety: Innovating Theory and Practice ◽

10.1201/9781315374987-154 ◽

2016 ◽

pp. 1023-1027 ◽

Cited By ~ 1

Author(s):

D Wiseman

Keyword(s):

Attack Tree ◽

Tree Analysis

Download Full-text

Quantitative Attack Tree Analysis via Priced Timed Automata

Lecture Notes in Computer Science - Formal Modeling and Analysis of Timed Systems ◽

10.1007/978-3-319-22975-1_11 ◽

2015 ◽

pp. 156-171 ◽

Cited By ~ 26

Author(s):

Rajesh Kumar ◽

Enno Ruijters ◽

Mariëlle Stoelinga

Keyword(s):

Timed Automata ◽

Attack Tree ◽

Tree Analysis

Download Full-text

Numen: Network Risk Evaluation based on Naive Bayes-based Attack Tree

International Journal of Advancements in Computing Technology ◽

10.4156/ijact.vol4.issue21.55 ◽

2012 ◽

Vol 4 (21) ◽

pp. 466-472

Author(s):

Wang Hongbing ◽

Jing Qi ◽

Liu Heng ◽

Wang Zhao ◽

Cheng Li

Keyword(s):

Risk Evaluation ◽

Naive Bayes ◽

Naïve Bayes ◽

Attack Tree ◽

Network Risk

Download Full-text

Security Threat Assessment of an Internet Security System Using Attack Tree and Vague Sets

The Scientific World JOURNAL ◽

10.1155/2014/506714 ◽

2014 ◽

Vol 2014 ◽

pp. 1-9 ◽

Cited By ~ 3

Author(s):

Kuei-Hu Chang

Keyword(s):

Failure Probability ◽

Traditional Approach ◽

Threat Assessment ◽

Internet Security ◽

Security System ◽

Entire System ◽

Security Threat ◽

Attack Tree ◽

Vague Sets ◽

Novel Technique

Security threat assessment of the Internet security system has become a greater concern in recent years because of the progress and diversification of information technology. Traditionally, the failure probabilities of bottom events of an Internet security system are treated as exact values when the failure probability of the entire system is estimated. However, security threat assessment when the malfunction data of the system’s elementary event are incomplete—the traditional approach for calculating reliability—is no longer applicable. Moreover, it does not consider the failure probability of the bottom events suffered in the attack, which may bias conclusions. In order to effectively solve the problem above, this paper proposes a novel technique, integrating attack tree and vague sets for security threat assessment. For verification of the proposed approach, a numerical example of an Internet security system security threat assessment is adopted in this paper. The result of the proposed method is compared with the listing approaches of security threat assessment methods.

Download Full-text