Analysing Variability-Aware Attack-Fault-Trees with the Meta Attack Language
- Type:Bachelor's thesis
- Supervisor:
- Person in Charge:Open
-
Context: Attack-Fault-Trees describe paths that can lead to a system failure. Events are either attacks (compromising security) or faults (compromising safety) that are combined by gates, comparable to logical gates in combinatorial logic. Variability-Aware Attack-Fault-Trees add variability information to events and gates to make them suitable for configurable systems. There is a tool to model these Variability-Aware Attack-Fault-Trees called VAFT-Editor. The task will be to translate the representation created by the VAFT-Editor into the Meta Attack Language (MAL), analyse the translated Variability-Aware Attack-Fault-Tree, and process and interpret the analysis results.
Goal: Implement Variability-Aware Attack-Fault-Trees in the Meta Attack Language and compare the new implementation to existing implementations.
Requirements: Prior knowledge of product lines is not required but might be helpful. Knowledge about Security and Attack and Fault Tree Modeling can be helpful.