Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction

Peter Maynard; Kieran McLaughlin; Sakir Sezer

doi:10.5220/0005745704650472

Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction

Peter Maynard, Kieran McLaughlin, Sakir Sezer

2016

Abstract

In this paper we identify requirements for choosing a threat modelling formalisation for modelling sophisticated malware such as Duqu 2.0. We discuss the gaps in current formalisations and propose the use of Attack Trees with Sequential Conjunction when it comes to analysing complex attacks. The paper models Duqu 2.0 based on the latest information sourced from formal and informal sources. This paper provides a well structured model which can be used for future analysis of Duqu 2.0 and related attacks.

Download

Paper Citation

in Harvard Style

Maynard P., McLaughlin K. and Sezer S. (2016). Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction . In Proceedings of the 2nd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-167-0, pages 465-472. DOI: 10.5220/0005745704650472

in Bibtex Style

@conference{icissp16,
author={Peter Maynard and Kieran McLaughlin and Sakir Sezer},
title={Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction},
booktitle={Proceedings of the 2nd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2016},
pages={465-472},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005745704650472},
isbn={978-989-758-167-0},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 2nd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Modelling Duqu 2.0 Malware using Attack Trees with Sequential Conjunction
SN - 978-989-758-167-0
AU - Maynard P.
AU - McLaughlin K.
AU - Sezer S.
PY - 2016
SP - 465
EP - 472
DO - 10.5220/0005745704650472