Quantitative Security and Safety Analysis with Attack-Fault Trees

  title={Quantitative Security and Safety Analysis with Attack-Fault Trees},
  author={Rajesh Kumar and Mari{\"e}lle Stoelinga},
  journal={2017 IEEE 18th International Symposium on High Assurance Systems Engineering (HASE)},
Cyber physical systems, like power plants, medical devices and data centers have to meet high standards, both in terms of safety (i.e. absence of unintentional failures) and security(i.e. no disruptions due to malicious attacks). This paper presents attack fault trees (AFTs), a formalism thatmarries fault trees (safety) and attack trees (security). We equipAFTs with stochastic model checking techniques, enabling a rich plethora of qualitative and quantitative analyses. Qualitative metrics… CONTINUE READING