A compositional semantics for Repairable Fault Trees with general distributions

Monti, Raúl E.; Budde, Carlos E.; D’Argenio, Pedro R.

doi:10.29007/p16v

Cited by 5 publications

(8 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Instead, in this work we follow [26,27] and call an AT dynamic when its structure includes a sequential-AND gate-so its semantics must distinguish among different execution orders of the basic attack steps. This is akin to the notions used in fault tree analysis, where dynamic gates like priority-AND in dynamic fault trees have similar semantics to sequential-AND in ATs [28,57].…”

Section: Related Workmentioning

confidence: 99%

Efficient and Generic Algorithms for Quantitative Attack Tree Analysis

Lopuhaä-Zwakenberg

Budde

Stoelinga

2023

IEEE Trans. Dependable and Secure Comput.

Self Cite

View full text Add to dashboard Cite

Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is; typical metrics being the most likely attack, the cheapest, or the most damaging one. However, existing methods are only geared towards specific metrics or do not work on general attack trees. This paper classifies attack trees in two dimensions: proper trees vs. directed acyclic graphs (i.e. with shared subtrees); and static vs. dynamic gates. For three out of these four classes, we propose novel algorithms that work over a generic attribute domain, encompassing a large number of concrete security metrics defined on the attack tree semantics; dynamic attack trees with directed acyclic graph structure are left as an open problem. We also analyse the computational complexity of our methods.

show abstract

Section: Related Workmentioning

confidence: 99%

Efficient and Generic Algorithms for Quantitative Attack Tree Analysis

Lopuhaä-Zwakenberg

Budde

Stoelinga

2023

IEEE Trans. Dependable and Secure Comput.

Self Cite

View full text Add to dashboard Cite

show abstract

“…The mathematical definition of a compositional semantics for repairable dfts that allows this approach is introduced in [20]; moreover, [3] formally defines simulation traces in such iosa semantics.…”

Section: Fault Tree Analysis Via (Rare Event) Simulationmentioning

confidence: 99%

“…Note however that repairs do not affect mcs. Thus, in this work we consider the class of repairable fault trees (rft) described in [20]-but excluding PAND gates.…”

Section: Mcs Re-writing Of Treesmentioning

confidence: 99%

“…Thus, SPARE gates are essentially ANDs. Moreover, FDEPs in rfts are non-destructive: if a failed trigger is repaired, the BEs affected by the gate become available (not necessarily operational) once again [20]. This can be modelled with OR gates: in Fig.…”

Section: Mcs Re-writing Of Treesmentioning

confidence: 99%

“…The theory described in this section is piggybacked in the tool chain of [3], where rfts are input in an extended version of the Galileo textual format [26,27]. A Java converter builds its iosa semantics following [20], as well as the compositional importance function of [3]. Model and function are then fed to the tool, which implements various flavours of (importance splitting) res.…”

Section: Importance Functions From Minimal Cut Setsmentioning

confidence: 99%

See 2 more Smart Citations

Automated Rare Event Simulation for Fault Tree Analysis via Minimal Cut Sets

Budde

Stoelinga

2020

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

This publication is distributed under the terms of Article 25fa of the Dutch Copyright Act (Auteurswet) with explicit consent by the author. Dutch law entitles the maker of a short scientific work funded either wholly or partially by Dutch public funds to make that work publicly available for no consideration following a reasonable period of time after the work was first published, provided that clear reference is made to the source of the first publication of the work. This publication is distributed under The Association of Universities in the Netherlands (VSNU) 'Article 25fa implementation' pilot project. In this pilot research outputs of researchers employed by Dutch Universities that comply with the legal requirements of Article 25fa of the Dutch Copyright Act are distributed online and free of cost or other barriers in institutional repositories. Research outputs are distributed six months after their first online publication in the original published version and with proper attribution to the source of the original publication.You are permitted to download and use the publication for personal purposes. Please note that you are not allowed to share this article on other platforms, but can link to it. All rights remain with the author(s) and/or copyrights owner(s) of this work. Any use of the publication or parts of it other than authorised under this licence or copyright law is prohibited. Neither Radboud University nor the authors of this publication are liable for any damage resulting from your (re)use of this publication.If you believe that digital publication of certain material infringes any of your rights or (privacy) interests, please let the Library know, stating your reasons. In case of a legitimate complaint, the Library will make the ma terial

show abstract