Generating attacks in SysML activity diagrams by detecting attack surfaces

Interdisciplinary Research Group in Socio-technical Cybersecurity

Generating attacks in SysML activity diagrams by detecting attack surfaces

Samir Ouchani, Gabriele Lenzini
Abstract:
In the development process of a secure system is essential to detect as early as possible the system’s vulnerable points, the so called attack surfaces, and to estimate how feasible it would be that known attacks breach through them. Even if attack surfaces can be sometimes detected automatically, mapping them against known attacks still is a step apart. Systems and attacks are not usually modelled in compatible formalisms. We develop a practical framework that automates the whole process. We formalize a system as SysML activity diagrams and in the same formalism we model libraries of patterns taken from standard catalogues of social engineering and technical attacks. An algorithm that we define, navigates the system’s diagrams in search for its attack surfaces; then it evaluates the possibility and the probability that the detected weak points host attacks among those in the modelled library. We prove the correctness and the completeness of our approach and we show how it works on a use case scenario. It represents a very common situation in the domain of communication and data security for corporations.
Authors:
Samir Ouchani, Gabriele Lenzini
Publication date:
2015
Published in:
Journal of Ambient Intelligence and Humanized Computing
Reference:
Ouchani, S., Lenzini, G. Generating attacks in SysML activity diagrams by detecting attack surfaces. J Ambient Intell Human Comput 6, 361–373 (2015).

Get in touch with us

SnT – Interdisciplinary Centre for Security, Reliability and Trust
Maison du Nombre, 6, avenue de la Fonte L-4364 Esch-sur-Alzette
info-irisc-lab@uni.lu