library based attack tree synthesis
play

Library-based Attack Tree Synthesis S ebastien L e Cong, Sophie - PowerPoint PPT Presentation

May 27, 2023 •8 likes •198 views

Formal setting Algorithm and demo Theoretical complexity Conclusion Library-based Attack Tree Synthesis S ebastien L e Cong, Sophie Pinchinat Francois Schwarzentruber Univ Rennes - France June 22, 2020 1 / 19 Formal setting

  1. Formal setting Algorithm and demo Theoretical complexity Conclusion Library-based Attack Tree Synthesis S´ ebastien Lˆ e Cong, Sophie Pinchinat Francois Schwarzentruber Univ Rennes - France June 22, 2020 1 / 19

  2. Formal setting Algorithm and demo Theoretical complexity Conclusion Attack reports are difficult to “parse” 2 / 19

  3. Formal setting Algorithm and demo Theoretical complexity Conclusion Attack tree as recipe of attack task steal painting turn security off take painting enter museum disable camera 1 disable camera 2 enter door a enter door b leaf Primitive task OR node Execute one of the subtasks AND node Execute subtasks “concurrently” SAND node Execute subtasks sequentially 3 / 19

  4. Formal setting Algorithm and demo Theoretical complexity Conclusion Our contribution: library-based attack tree synthesis An attack (e.g. log file) Synthesis An attack tree steal painting turn security off enter museum take painting disable camera 1 disable camera 2 enter door a enter door b A library 4 / 19

  5. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 5 / 19

  6. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 6 / 19

  7. Formal setting Algorithm and demo Theoretical complexity Conclusion An attack formalized as a trace: 7 / 19

  8. Formal setting Algorithm and demo Theoretical complexity Conclusion Library A catalog of known attack patterns steal painting turn security off take painting 1 enter museum turn security off disable camera 1 disable camera 2 2 turn security off goto the center blow up a bomb 3 disable camera 1 ¬ monitor 1 to frozen 1 4 8 / 19

  9. Formal setting Algorithm and demo Theoretical complexity Conclusion Semantics of attack trees steal painting turn security off enter museum take painting disable camera 1 disable camera 2 enter door a enter door b attack tree explains trace t if leaf t achieves primitive task (direct notion) OR node at least one child tree explains t AND node t is a merge of traces explained by child trees SAND node t is a sequence of traces explained by child trees 9 / 19

  10. Formal setting Algorithm and demo Theoretical complexity Conclusion Library-based attack tree synthesis A trace Synthesis An attack tree steal painting turn security off take painting enter museum disable camera 1 disable camera 2 enter door a enter door b A library Synthesis specifications : build an attack tree that explains the input trace 1 rests upon the input library 2 10 / 19

  11. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 11 / 19

  12. Formal setting Algorithm and demo Theoretical complexity Conclusion Attack tree synthesis ∼ Parsing Algorithmic principles Trace ∼ Formal word Library attack patterns ∼ Grammar rules Attack tree ∼ Syntactic tree Bottom-up approach ∼ Cocke-Younger-Kasami parsing algorithm 12 / 19

  13. Formal setting Algorithm and demo Theoretical complexity Conclusion Online tool http://attacktreesynthesis.irisa.fr/ 13 / 19

  14. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 14 / 19

  15. Formal setting Algorithm and demo Theoretical complexity Conclusion Theoretical complexity Theorem The library-based attack tree synthesis is NP-complete. Still, polynomial in the length of the input trace! NP-membership: given algorithm NP-hardness: reduction from the Packed Interval Coverage, essentially due to AND operator. Theorem For bounded AND -arity libraries, synthesis is in P . 15 / 19

  16. Formal setting Algorithm and demo Theoretical complexity Conclusion Outline Formal setting 1 Algorithm and demo 2 Theoretical complexity 3 Conclusion 4 16 / 19

  17. Formal setting Algorithm and demo Theoretical complexity Conclusion Conclusion A formal library-based attack tree synthesis problem An algorithm and an online protoype tool A complete study of the theoretical complexity ⇒ Algorithm essentially optimal Bounded AND -arity in libraries is a realistic assumption 17 / 19

  18. Formal setting Algorithm and demo Theoretical complexity Conclusion Perspectives Theoretical: More abstract attack patterns: first-order features in rules as in (Jhawar et al. 2018) and (Ivanova et al. 2015) Library-based attack tree synthesis for a set of traces Practical: Scalability of the tool, e.g. parsing optimisation techniques Bridge the gap with libraries in practice, e.g. MITRE-ATT&CK 18 / 19

  19. Formal setting Algorithm and demo Theoretical complexity Conclusion Thank you for your attention! 19 / 19

Recommend

Session 12 Tree-based models: tree and rpart Two libraries The tree library is like the

Session 12 Tree-based models: tree and rpart Two libraries The tree library is like the

Session 12 Tree-based models: tree and rpart Two libraries The tree library is like the S-PLUS native library and implements the traditional S-PLUS tree technology The rpart library is due to Beth Atkinson and Terry Therneau of the Mayo

501 views • 28 slides
A Highly Efficient and Comprehensive Image Processing Library for C ++ -based High-Level Synthesis

A Highly Efficient and Comprehensive Image Processing Library for C ++ -based High-Level Synthesis

A Highly Efficient and Comprehensive Image Processing Library for C ++ -based High-Level Synthesis M. Akif zkan, Oliver Reiche, Frank Hannig, and Jrgen Teich Hardware/Software Co-Design, Friedrich-Alexander University Erlangen-Nrnberg FSP

572 views • 45 slides
Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi

Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi

Medusa: Microarchitectural Data Leakage via Automated Attack Synthesis Daniel Moghimi Moritz Lipp Berk Sunar Michael Schwarz 2018: Meltdown Attack? 2 2018: Meltdown Attack? Virtual Address Space User Space CPU Registers

1.14k views • 63 slides
Software Side-Channel Analysis: Attack Synthesis Lucas Bang Dissertation Defense Committee:

Software Side-Channel Analysis: Attack Synthesis Lucas Bang Dissertation Defense Committee:

Software Side-Channel Analysis: Attack Synthesis Lucas Bang Dissertation Defense Committee: Tevfik Bultan (chair) Omer E gecio glu Ben Hardekopf 1 Publications during PhD Aydin, Bang , Bultan. [CAV 2015] Automata-Based Model

2.13k views • 198 slides
ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack

ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack

ss 8 Class Cl CSC 495/583 Topics of Software Security PLT, GOT & Return-to-plt Attack & GOT Overwrite Attack Dr. Si Chen (schen@wcupa.edu) Review Page 2 ret2libc Attack Page 3 libc C standard library Provides

662 views • 36 slides
Clock Tree Construction based on Arrival Time Constraints Rickard Ewetz, University of Central

Clock Tree Construction based on Arrival Time Constraints Rickard Ewetz, University of Central

Clock Tree Construction based on Arrival Time Constraints Rickard Ewetz, University of Central Florida Cheng-Kok Koh, Purdue University Clock Tree Synthesis Clock Source Objective: Connect source to sinks wire Buffers Wires buffer

310 views • 27 slides
Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification. These involve stratifying or segmenting the predictor space into a number of simple regions. Since the set of splitting rules used to segment the

785 views • 51 slides
Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification.

Tree-based Methods Here we describe tree-based methods for regression and classification. These involve stratifying or segmenting the predictor space into a number of simple regions. Since the set of splitting rules used to segment the

1.08k views • 55 slides
Attack- based Domain Transition Analysis Susan Hinrichs shinrich@ uiuc.edu Prasad Naldurg

Attack- based Domain Transition Analysis Susan Hinrichs shinrich@ uiuc.edu Prasad Naldurg

Attack- based Domain Transition Analysis Susan Hinrichs shinrich@ uiuc.edu Prasad Naldurg prasadn@ microsoft.com SE Linux Symposium Attack- based DTA 1 06 Outline Motivation Review of type enforcement transitions Attack

471 views • 18 slides
Text-to-Image Generation Yu Cheng Text-to-Image Synthesis Text-to-Image Synthesis

Text-to-Image Generation Yu Cheng Text-to-Image Synthesis Text-to-Image Synthesis

Text-to-Image Generation Yu Cheng Text-to-Image Synthesis Text-to-Image Synthesis StackGAN, AttnGAN, TAGAN, ObjGAN Text-to-Video Synthesis GAN-based methods, VAE-based methods, StoryGAN Dialogue-based Image Synthesis

827 views • 45 slides
1 Conceptual Example (III): Less formally (II) Or-tree-based Search n If all

1 Conceptual Example (III): Less formally (II) Or-tree-based Search n If all

2.4.3 Or-tree-based Search Formal Definitions (I) Or-tree-based Search Model A = ( S , T ): Basic Idea: n Prob set of problem descriptions If every solution is okay, represent the different n Altern Prob +

190 views • 3 slides
Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras Side Channel Analysis Electro magnetic Radiation Fault injection Power consumption Timing channels Preventing Side Channel Attacks is

468 views • 34 slides
Genetics-based Machine Learning and Behaviour Based Robotics: A New Synthesis

Genetics-based Machine Learning and Behaviour Based Robotics: A New Synthesis

Genetics-based Machine Learning and Behaviour Based Robotics: A New Synthesis Genetics-based Machine Learning and Behavior Based Robotics: A New Synthesis, Marco Dorigo, Uwe Schnepf, IEEE Transactions on System, MAn, and Cybernetics,

348 views • 34 slides
15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are

15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are

15 Tree-based MT In this chapter, we will cover methods for sequence-to-sequence mapping that are based on tree structures. 15.1 Motivation for Tree-based Methods Translation Examples A Generalized Rule josei wa ringo wo tabeta NP 1 wa NP 2

648 views • 15 slides
Automatic Library Compilation and Proof Tree Visualisation for Coq Proof General Hendrik Tews

Automatic Library Compilation and Proof Tree Visualisation for Coq Proof General Hendrik Tews

Automatic Library Compilation Proof Tree Visualisation Conclusion Automatic Library Compilation and Proof Tree Visualisation for Coq Proof General Hendrik Tews Technische Universit at Dresden Third Coq Workshop, August 26, 2011 Hendrik

385 views • 16 slides
CAS CS 460/660 Introduction to Database Systems Tree Based Indexing: B+-tree Slides from UC

CAS CS 460/660 Introduction to Database Systems Tree Based Indexing: B+-tree Slides from UC

CAS CS 460/660 Introduction to Database Systems Tree Based Indexing: B+-tree Slides from UC Berkeley 1.1 How to Build Tree-Structured Indexes Tree-structured indexing techniques support both range searches and equality searches . Two

668 views • 36 slides
Moving Forward: A Non-Search Based Synthesis Method towards Efficient CNOT-Based Quantum Circuit

Moving Forward: A Non-Search Based Synthesis Method towards Efficient CNOT-Based Quantum Circuit

Moving Forward: A Non-Search Based Synthesis Method towards Efficient CNOT-Based Quantum Circuit Synthesis Algorithms Mehdi Saeedi, Morteza Saheb Zamani, Mehdi Sedighi Email: {msaeedi, szamani, msedighi}@ aut.ac.ir Quantum Design Automation

529 views • 38 slides
Synthesis of graphene-based nanomaterials: their applications in electrochemical detection of

Synthesis of graphene-based nanomaterials: their applications in electrochemical detection of

Synthesis of graphene-based nanomaterials: their applications in electrochemical detection of organic molecules Stela Pruneanu INCDTIM Cluj-Napoca NANOGENTOOLS Autumn School October 2017 TOPICS 1. Graphene synthesis TEM/HRTEM

741 views • 34 slides
Chapter 11 Tree-based models Statistical Machine Translation Tree-Based Models Traditional

Chapter 11 Tree-based models Statistical Machine Translation Tree-Based Models Traditional

Chapter 11 Tree-based models Statistical Machine Translation Tree-Based Models Traditional statistical models operate on sequences of words Many translation problems can be best explained by pointing to syntax reordering, e.g., verb

1.39k views • 120 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
Design, Synthesis and in vitro Screening of Pyrazolines based compounds as Phytohaemagglutinin (

Design, Synthesis and in vitro Screening of Pyrazolines based compounds as Phytohaemagglutinin (

Design, Synthesis and in vitro Screening of Pyrazolines based compounds as Phytohaemagglutinin ( PHA) mimetic Raj Kumar 1, *, Gaurav Joshi 1 , and Sandeep Singh 2 1 Laboratory for Drug Design and Synthesis, Centre for Pharmaceutical Sciences and

1.8k views • 21 slides
A Dynamic Memory Allocation Library for High-Level Synthesis Nicholas V. Giamblanco and Jason H.

A Dynamic Memory Allocation Library for High-Level Synthesis Nicholas V. Giamblanco and Jason H.

A Dynamic Memory Allocation Library for High-Level Synthesis Nicholas V. Giamblanco and Jason H. Anderson University of Toronto, Canada Dept. of Electrical and Computer Engineering FPL 2019 Dynamic Memory Allocation in HLS: Current Problems

1.2k views • 13 slides
Standard Cell Library/Library Exchange Format (LEF) Advanced VLSI Design CMPE 414 A Good

Standard Cell Library/Library Exchange Format (LEF) Advanced VLSI Design CMPE 414 A Good

Standard Cell Library/Library Exchange Format (LEF) Advanced VLSI Design CMPE 414 A Good Standard Cell Library Cell libraries determine the overall performance of the synthesized logic Synthesis engines rely on a number of factors for

838 views • 12 slides
A template-based approach for speech synthesis intonation generation using LSTMs Srikanth Ronanki

A template-based approach for speech synthesis intonation generation using LSTMs Srikanth Ronanki

A template-based approach for speech synthesis intonation generation using LSTMs Srikanth Ronanki Gustav Zhizheng Simon Introduction: Statistical speech synthesis SPSS: Generation based approaches Vocoder MGC BAP Regression Text

502 views • 20 slides

More recommend