Attack tree analysis for insider threats on the IoT using Isabelle

Kammueller, Florian ORCID: https://orcid.org/0000-0001-5839-5488, Nurse, Jason R. C. and Probst, Christian (2016) Attack tree analysis for insider threats on the IoT using Isabelle. Human Aspects of Information Security, Privacy, and Trust: 4th International Conference, HAS 2016, Held as Part of HCI International 2016, Toronto, ON, Canada, July 17-22, 2016, Proceedings. In: 4th International Conference on Human Aspects of Security, Privacy and Trust, HCII-HAS 2016, 17-24 Jul 2016, Toronto, ON, Canada. ISBN 9783319393803. ISSN 0302-9743 [Conference or Workshop Item] (doi:10.1007/978-3-319-39381-0_21)

[img]
Preview
PDF - Final accepted version (with author's formatting)
Download (296kB) | Preview

Abstract

The Internet-of-Things (IoT) aims at integrating small devices around humans. The threat from human insiders in “regular” organisations is real; in a fully-connected world of the IoT, organisations face a substantially more severe security challenge due to unexpected access possibilities and information flow. In this paper, we seek to illustrate and classify insider threats in relation to the IoT (by ‘smart insiders’), exhibiting attack vectors for their characterisation. To model the attacks we apply a method of formal modelling of Insider Threats in the interactive theorem prover Isabelle. On the classified IoT attack examples, we show how this logical approach can be used to make the models more precise and to analyse the previously identified Insider IoT attacks using Isabelle attack trees

Item Type: Conference or Workshop Item (Paper)
Additional Information: Paper published as:
Kammüller F., Nurse J.R.C., Probst C.W. (2016) Attack Tree Analysis for Insider Threats on the IoT Using Isabelle. In: Tryfonas T. (eds) Human Aspects of Information Security, Privacy, and Trust. HAS 2016. Lecture Notes in Computer Science, vol 9750. Springer, Cham
Research Areas: A. > School of Science and Technology > Computer Science
Item ID: 19714
Notes on copyright: The final publication is available at Springer via https://doi.org/10.1007/978-3-319-39381-0_21
Useful Links:
Depositing User: Florian Kammueller
Date Deposited: 04 May 2016 14:12
Last Modified: 09 Jun 2021 23:27
URI: https://eprints.mdx.ac.uk/id/eprint/19714

Actions (login required)

View Item View Item

Full text downloads (NB count will be zero if no full text documents are attached to the record)

Downloads per month over the past year