Using model driven engineering to support multi-paradigms security analysis - Archive ouverte HAL Access content directly
Conference Papers Year : 2015

Using model driven engineering to support multi-paradigms security analysis

(1) , (1) , (1) , (1)
1

Abstract

Nowadays, security analysis of complex systems has become a major concern. Many works have been achieved to reduce vulnerabilities in such systems. However, existing methods used to perform security assessment as a holistic approach are still poorly instrumented and limited in scope. In this work, we propose methodology and associated framework for security analysis. The methodology relies upon model-driven engineering approach and combines two types of methods: a qualitative method named EBIOS that is usually simple and helps to identify critical parts of the system; then a quantitative method, the Attack Trees method, that is more complex but gives more accurate results. We present the automatic generation of Attack trees from EBIOS analysis phase. We show on a SCADA system case study how our process can be applied.
Not file

Dates and versions

cea-01836561 , version 1 (12-07-2018)

Identifiers

Cite

R. Abdallah, A. Motii, N. Yakymets, A. Lanusse. Using model driven engineering to support multi-paradigms security analysis. Model-Driven Engineering and Software Development. MODELSWARD 2015. Communications in Computer and Information Science, Feb 2015, Angers, France. pp.278-292, ⟨10.1007/978-3-319-27869-8_16⟩. ⟨cea-01836561⟩
21 View
0 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More