How to Generate Security Cameras: Towards Defence Generation for Socio-Technical Systems

TL;DR

This paper introduces an attack-defence modeling approach that integrates with socio-technical system models to automate attack tree generation and security control selection, enhancing risk analysis and defense strategies.

Contribution

It proposes attack-defence bundles linked to socio-technical models, enabling automated attack-defence tree synthesis and improved security control management.

Findings

Enables automated attack-defence tree generation from socio-technical models.

Supports selection and maintenance of security controls beyond model capabilities.

Facilitates basic attack-defence analysis for socio-technical systems.

Abstract

Recently security researchers have started to look into automated generation of attack trees from socio-technical system models. The obvious next step in this trend of automated risk analysis is automating the selection of security controls to treat the detected threats. However, the existing socio-technical models are too abstract to represent all security controls recommended by practitioners and standards. In this paper we propose an attack-defence model, consisting of a set of attack-defence bundles, to be generated and maintained with the socio-technical model. The attack-defence bundles can be used to synthesise attack-defence trees directly from the model to offer basic attack-defence analysis, but also they can be used to select and maintain the security controls that cannot be handled by the model itself.