24th Estonian Winter School in Computer Science (EWSCS)
XXIV Eesti Arvutiteaduse Talvekool

Palmse, Estonia, March 3 - 8, 2019

Barbara Kordy

IRISA, Rennes

Attack trees 20 years later


Since their introduction in 1999, attack trees have become one of the most popular models for representation and analysis of security issues. They have been successfully adopted by industry where they are employed to evaluate the security of systems and organizations. Over the last two decades, attack trees also attracted the attention of numerous scientists, especially in the domain of security and formal methods, resulting in various methodologies, algorithms, and software tools for their design and manipulation.

This series of lectures will give a broad overview of attack trees - their meaning, creation, and quantitative analysis. Formal foundations of attack trees will be introduced and some of the existing algorithms for their analysis will be presented. We will also discuss the limitations of the classical attack tree model and show how they can be overcome with more expressive models, better suited for real-life applications.

Finally, during the hands-on sessions, the students will be confronted with research-oriented questions on attack trees and they will have an opportunity to play with a real-life model.

Course materials

Valid CSS! Valid XHTML 1.0 Strict Last changed March 30, 2019 22:33 Europe/Helsinki (GMT +02:00) by local organizers, ewscs19(at)cs.ioc.ee
EWSCS'19 page: http://cs.ioc.ee/ewscs/2019/