QuADTool: Attack-Defense-Tree Synthesis, Analysis and Bridge to Verification

arXiv:2406.15605v1 Announce Type: new
Abstract: Ranking risks and countermeasures is one of the foremost goals of quantitative security analysis. One of the popular frameworks, used also in industrial practice, for this task are attack-defense trees. Standard quantitative analyses available for attack-defense trees can distinguish likely from unlikely vulnerabilities. We provide a tool that allows for easy synthesis and analysis of those models, also featuring probabilities, costs and time. Furthermore, it provides a variety of interfaces to existing model checkers and …

analysis arxiv attack bridge can countermeasures cs.cr defense frameworks goals industrial popular practice quantitative risks security security analysis standard synthesis task tool trees verification vulnerabilities