Optimizing System Architecture Cost and Security Countermeasures

Abstract : The design of an embedded system is built on a trade-off between its performance and its cost. Nowadays, the security threats that target most of the embedded systems introduce a new factor in this trade-off: the security level of the system. So system architects must consider , during the design, the different attacks that target the system and the possible countermeasures, and their costs. In this article, we present a methodology to help designers explore different countermeasures and evaluate their impact on the cost of the architecture and the probability of success of an adversary. This methodology is based on extended and formalized Attack-Defense Trees that allow to assess the impact of countermeasures on system components and attacks. We use propagation rules to characterize a main attack from its different steps, and we formalize the trade-off between security and cost by an optimization problem between attack probability and total architecture cost.
Complete list of metadatas

Cited literature [26 references]  Display  Hide  Download

Contributor : Ludovic Apvrille <>
Submitted on : Tuesday, October 29, 2019 - 2:30:52 PM
Last modification on : Wednesday, December 18, 2019 - 5:26:37 PM


Files produced by the author(s)


  • HAL Id : hal-02337448, version 1


Sahar Berro, Ludovic Apvrille, Guillaume Duc. Optimizing System Architecture Cost and Security Countermeasures. Sixth International Workshop on Graphical Models for Security (GamSec 2019), Jun 2019, Hoboken, NJ, United States. ⟨hal-02337448⟩



Record views


Files downloads