Assessing the Understandability and Acceptance of Attack-Defense Trees for Modelling Security Requirements

arXiv:2404.06386v1 Announce Type: cross
Abstract: Context and Motivation Attack-Defense Trees (ADTs) are a graphical notation used to model and assess security requirements. ADTs are widely popular, as they can facilitate communication between different stakeholders involved in system security evaluation, and they are formal enough to be verified, e.g., with model checkers. Question/Problem While the quality of this notation has been primarily assessed quantitatively, its understandability has never been evaluated despite being mentioned as a key factor for its success. Principal …

arxiv attack can communication context cs.cr cs.se defense evaluation motivation popular requirements security security requirements stakeholders system system security trees verified