Abstract | ||
---|---|---|
Threat trees are notable tools in the security analysis process called "threat modeling"'. The trees are used to identify how and under what condition threats can be realized, which will help proper estimation of risks and planning of countermeasures. However, it is difficult for an average analyst to construct adequate trees, because security expertise, particularly from an attacker's perspective, is required to find potential attack scenarios. In this paper, we propose threat tree templates to help non-expert analysts to construct threat trees. Each template is a redundant threat tree, loaded with branches representing many possible attack scenarios, as well as typical examples of corresponding vulnerabilities and countermeasures against such attacks. We also propose a keyword system for the templates, designed to filter out irrelevant scenarios. |
Year | DOI | Venue |
---|---|---|
2011 | 10.1109/NBiS.2011.113 | NBiS |
Keywords | Field | DocType |
threat tree template,security expertise,potential attack scenario,threat tree,redundant threat tree,possible attack scenario,threat modeling,threat tree templates,adequate tree,ease difficulties,condition threat,security analysis process,software design,databases,security analysis,security,data models,data model,tree data structures,web servers | Countermeasure,Data modeling,Software design,Computer security,Threat model,Computer science,Tree (data structure),Security analysis,Vulnerability,Web server | Conference |
Citations | PageRank | References |
2 | 0.37 | 0 |
Authors | ||
2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Ikuya Morikawa | 1 | 3 | 1.07 |
Yuji Yamaoka | 2 | 9 | 4.63 |