Modelling Security Risk Scenarios Using Subjective Attack Trees

Nasser Al-Hadhrami; Matthew Collinson; Nir Oren

doi:10.1007/978-3-030-68887-5_12

Modelling Security Risk Scenarios Using Subjective Attack Trees

Nasser Al-Hadhrami, Matthew Collinson, Nir Oren

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

54 Downloads (Pure)

Abstract

We propose a novel attack tree model, called a subjective attack tree, aiming to address the limitations of traditional attack trees, which use precise values for likelihoods of security events. In many situations, it is often difficult to elicit accurate probabilities due to lack of knowledge, or insufficient historical data, making the evaluation of risk in existing approaches unreliable. In this paper, we consider the modelling of uncertainty about probabilities, via subjective opinions, resulting in a model taking second-order uncertainty into account. We propose an approach to derive subjective opinions about security events based on two main criteria, namely a vulnerability level and technical difficulty to conduct an attack, using subjective logic. These subjective opinions are then used as input parameters in the proposed model. The propagation method of subjective opinions is also discussed. Our approach is evaluated against traditional attack trees using the Stuxnet self-installation scenario. Our results show that taking uncertainty about probabilities into account during security risk analysis can lead to different outcomes, and therefore different security decisions.

Original language	English
Title of host publication	Risks and Security of Internet and Systems
Subtitle of host publication	CRiSIS 2020
Editors	Joaquin Garcia Alfaro, Jean Leneutre, Nora Cuppens, Reda Yaich
Publisher	Springer Nature Switzerland AG
Pages	201-218
Number of pages	18
Volume	12528
ISBN (Electronic)	978-3-030-68887-5
ISBN (Print)	978-3-030-68886-8
DOIs	https://doi.org/10.1007/978-3-030-68887-5_12
Publication status	Published - 12 Feb 2021
Event	15th International Conference: CRiSIS 2020 - Paris, France Duration: 4 Nov 2020 → 6 Nov 2020 Conference number: 15th https://www.springer.com/gp/book/9783030688868

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	12528
ISSN (Electronic)	0302-9743

Conference

Conference	15th International Conference
Country/Territory	France
City	Paris
Period	4/11/20 → 6/11/20
Internet address	https://www.springer.com/gp/book/9783030688868

Keywords

Attack trees
Risk analysis
Subjective logic

Access to Document

10.1007/978-3-030-68887-5_12Licence: Unspecified

Al-Hadharami_et_al_LNCS_ModellingSecurityRisk_AAM
The final authenticated version is available online at https://doi.org/10.1007/978-3-030-68887-5_12
Accepted author manuscript, 597 KBLicence: Other

Cite this

Al-Hadhrami, N., Collinson, M., & Oren, N. (2021). Modelling Security Risk Scenarios Using Subjective Attack Trees. In J. Garcia Alfaro, J. Leneutre, N. Cuppens, & R. Yaich (Eds.), Risks and Security of Internet and Systems: CRiSIS 2020 (Vol. 12528, pp. 201-218). (Lecture Notes in Computer Science; Vol. 12528). Springer Nature Switzerland AG. https://doi.org/10.1007/978-3-030-68887-5_12

Modelling Security Risk Scenarios Using Subjective Attack Trees. / Al-Hadhrami, Nasser; Collinson, Matthew ; Oren, Nir.
Risks and Security of Internet and Systems: CRiSIS 2020. ed. / Joaquin Garcia Alfaro; Jean Leneutre; Nora Cuppens; Reda Yaich. Vol. 12528 Springer Nature Switzerland AG, 2021. p. 201-218 (Lecture Notes in Computer Science; Vol. 12528).

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

Al-Hadhrami, N, Collinson, M & Oren, N 2021, Modelling Security Risk Scenarios Using Subjective Attack Trees. in J Garcia Alfaro, J Leneutre, N Cuppens & R Yaich (eds), Risks and Security of Internet and Systems: CRiSIS 2020. vol. 12528, Lecture Notes in Computer Science, vol. 12528, Springer Nature Switzerland AG, pp. 201-218, 15th International Conference, Paris, France, 4/11/20. https://doi.org/10.1007/978-3-030-68887-5_12

@inproceedings{3deea0cdadc549e0b82bd976ca36843a,

title = "Modelling Security Risk Scenarios Using Subjective Attack Trees",

abstract = "We propose a novel attack tree model, called a subjective attack tree, aiming to address the limitations of traditional attack trees, which use precise values for likelihoods of security events. In many situations, it is often difficult to elicit accurate probabilities due to lack of knowledge, or insufficient historical data, making the evaluation of risk in existing approaches unreliable. In this paper, we consider the modelling of uncertainty about probabilities, via subjective opinions, resulting in a model taking second-order uncertainty into account. We propose an approach to derive subjective opinions about security events based on two main criteria, namely a vulnerability level and technical difficulty to conduct an attack, using subjective logic. These subjective opinions are then used as input parameters in the proposed model. The propagation method of subjective opinions is also discussed. Our approach is evaluated against traditional attack trees using the Stuxnet self-installation scenario. Our results show that taking uncertainty about probabilities into account during security risk analysis can lead to different outcomes, and therefore different security decisions.",

keywords = "Attack trees, Risk analysis, Subjective logic",

author = "Nasser Al-Hadhrami and Matthew Collinson and Nir Oren",

year = "2021",

month = feb,

day = "12",

doi = "10.1007/978-3-030-68887-5_12",

language = "English",

isbn = "978-3-030-68886-8",

volume = "12528",

series = "Lecture Notes in Computer Science",

publisher = "Springer Nature Switzerland AG",

pages = "201--218",

editor = "{Garcia Alfaro}, {Joaquin } and Jean Leneutre and Cuppens, {Nora } and Reda Yaich",

booktitle = "Risks and Security of Internet and Systems",

address = "Switzerland",

note = "15th International Conference : CRiSIS 2020 ; Conference date: 04-11-2020 Through 06-11-2020",

url = "https://www.springer.com/gp/book/9783030688868",

}

TY - GEN

T1 - Modelling Security Risk Scenarios Using Subjective Attack Trees

AU - Al-Hadhrami, Nasser

AU - Collinson, Matthew

AU - Oren, Nir

N1 - Conference code: 15th

PY - 2021/2/12

Y1 - 2021/2/12

N2 - We propose a novel attack tree model, called a subjective attack tree, aiming to address the limitations of traditional attack trees, which use precise values for likelihoods of security events. In many situations, it is often difficult to elicit accurate probabilities due to lack of knowledge, or insufficient historical data, making the evaluation of risk in existing approaches unreliable. In this paper, we consider the modelling of uncertainty about probabilities, via subjective opinions, resulting in a model taking second-order uncertainty into account. We propose an approach to derive subjective opinions about security events based on two main criteria, namely a vulnerability level and technical difficulty to conduct an attack, using subjective logic. These subjective opinions are then used as input parameters in the proposed model. The propagation method of subjective opinions is also discussed. Our approach is evaluated against traditional attack trees using the Stuxnet self-installation scenario. Our results show that taking uncertainty about probabilities into account during security risk analysis can lead to different outcomes, and therefore different security decisions.

AB - We propose a novel attack tree model, called a subjective attack tree, aiming to address the limitations of traditional attack trees, which use precise values for likelihoods of security events. In many situations, it is often difficult to elicit accurate probabilities due to lack of knowledge, or insufficient historical data, making the evaluation of risk in existing approaches unreliable. In this paper, we consider the modelling of uncertainty about probabilities, via subjective opinions, resulting in a model taking second-order uncertainty into account. We propose an approach to derive subjective opinions about security events based on two main criteria, namely a vulnerability level and technical difficulty to conduct an attack, using subjective logic. These subjective opinions are then used as input parameters in the proposed model. The propagation method of subjective opinions is also discussed. Our approach is evaluated against traditional attack trees using the Stuxnet self-installation scenario. Our results show that taking uncertainty about probabilities into account during security risk analysis can lead to different outcomes, and therefore different security decisions.

KW - Attack trees

KW - Risk analysis

KW - Subjective logic

UR - http://www.scopus.com/inward/record.url?scp=85102622648&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-68887-5_12

DO - 10.1007/978-3-030-68887-5_12

M3 - Published conference contribution

SN - 978-3-030-68886-8

VL - 12528

T3 - Lecture Notes in Computer Science

SP - 201

EP - 218

BT - Risks and Security of Internet and Systems

A2 - Garcia Alfaro, Joaquin

A2 - Leneutre, Jean

A2 - Cuppens, Nora

A2 - Yaich, Reda

PB - Springer Nature Switzerland AG

T2 - 15th International Conference

Y2 - 4 November 2020 through 6 November 2020

ER -

Modelling Security Risk Scenarios Using Subjective Attack Trees

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this