University of Twente Student Theses
Modelling and Analysing Cybersecurity Risks Using Attack Fault Trees and Game Theory
Skenderagić, Lejla (2024) Modelling and Analysing Cybersecurity Risks Using Attack Fault Trees and Game Theory.
|
PDF
1MB |
| Abstract: | Cybersecurity risks can be investigated through Attack Fault Trees (AFTs), which integrate both safety and security aspects of a system in a novel way. Despite their potential, there is limited quantitative analysis available for these models. This research addresses this gap by utilising game theory to analyse AFTs quantitatively. By incorporating retry attacks, game theory allows attackers to repeatedly attempt to breach the system, provided they have a sufficient budget, introducing a new extent to the analysis. The PRISM model checker tool is utilised to perform this analysis and incorporate the retry function. The findings suggest that allowing hackers the option to retry attacks significantly increases the probability of system failure compared to scenarios without this option. This quantitative analysis emphasises the critical role of dynamic models in enhancing cybersecurity strategies. These insights can help develop more robust cybersecurity defences in increasingly interconnected digital environments. |
| Item Type: | Essay (Bachelor) |
| Faculty: | EEMCS: Electrical Engineering, Mathematics and Computer Science |
| Subject: | 54 computer science |
| Programme: | Business & IT BSc (56066) |
| Link to this item: | https://purl.utwente.nl/essays/101164 |
| Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Show download statistics for this publication
Show download statistics for this publicationRepository Staff Only: item control page