Accéder directement au contenu Accéder directement à la navigation
Communication dans un congrès

A Domain-specific Modeling Framework for Attack Surface Modeling

Tithnara Sun Bastien Drouot 1 Fahad Golra Joël Champeau 1 Sylvain Guerin Luka Le Roux 1 Raúl Mazo 1 Ciprian Teodorov 1 Lionel Aertryck Bernard Hostis
1 Lab-STICC_ENSTAB_ CACS_MOCS
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
Abstract : Cybersecurity is becoming vital as industries are gradually moving from automating physical processes to a higher level automation using cyber physical systems (CPS) and internet of things (IoT). In this context, security is becoming a continuous process that runs in parallel to other processes during the complete life cycle of a system. Traditional threat analysis methods use design models alongside threat models as an input for security analysis, hence missing the life-cycle-based dynamicity required by the security concern. In this paper, we argue for an attacker-aware systems modeling language that exposes the systems attack surfaces. For this purpose, we have designed Pimca, a domain specific modeling language geared towards capturing the attacker point of view of the system. This study introduces the formalism along with the Pimca workbench, a framework designed to ease the development and manipulation of the Pimca models. Finally, we present two relevant use cases, serving as a preliminary validation of our approach.
Type de document :
Communication dans un congrès
Liste complète des métadonnées

Littérature citée [17 références]  Voir  Masquer  Télécharger

https://hal.archives-ouvertes.fr/hal-02502387
Contributeur : Raul Mazo <>
Soumis le : mardi 10 mars 2020 - 11:26:51
Dernière modification le : mercredi 24 juin 2020 - 16:19:56
Archivage à long terme le : : jeudi 11 juin 2020 - 14:17:35

Fichier

2020_A Domain-specific Modelin...
Fichiers produits par l'(les) auteur(s)

Identifiants

Citation

Tithnara Sun, Bastien Drouot, Fahad Golra, Joël Champeau, Sylvain Guerin, et al.. A Domain-specific Modeling Framework for Attack Surface Modeling. ICISSP 2020 : 6th International Conference on Information Systems Security and Privacy, Feb 2020, Valetta, Malta. pp.341 - 348, ⟨10.5220/0008916203410348⟩. ⟨hal-02502387⟩

Partager

Métriques

Consultations de la notice

172

Téléchargements de fichiers

240