Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction

Autoria(s): Maynard, Peter; McLaughlin, Kieran; Sezer, Sakir
Data(s)

21/02/2016
Resumo

In this paper we identify requirements for choosing a threat modelling formalisation for modelling sophisticated malware such as Duqu 2.0. We discuss the gaps in current formalisations and propose the use of Attack Trees with Sequential Conjunction when it comes to analysing complex attacks. The paper models Duqu 2.0 based on the latest information sourced from formal and informal sources. This paper provides a well structured model which can be used for future analysis of Duqu 2.0 and related attacks.
Formato

application/pdf
Identificador

http://pure.qub.ac.uk/portal/en/publications/modelling-duqu-20-malware-using-attack-trees-with-sequential-conjunction(71dfc912-d7af-4e2f-b6b0-3844ab7cb654).html

http://dx.doi.org/10.5220/0005745704650472

http://pure.qub.ac.uk/ws/files/33499201/ICISSP_2016_81.pdf
Idioma(s)

eng
Publicador

SciTePress
Direitos

info:eu-repo/semantics/openAccess
Fonte

Maynard , P , McLaughlin , K & Sezer , S 2016 , Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction . in Proceedings of the 2nd International Conference on Information Systems Security and Privacy . SciTePress , pp. 465-472 , 2nd International Conference on Information Systems Security and Privacy , Rome , Italy , 19-21 February . DOI: 10.5220/0005745704650472
Tipo

contributionToPeriodical
Acesso ao item digital