Attack Propagation

An extension for an architecture description language (ADL) that allows modeling vulnerabilities and access control policies.

A metamodel to model the attacker’s capabilities and the vulnerabilities of the system. This can then be used to determine the potential weak spots after a new vulnerability is identified or to find attack paths to old vulnerable legacy elements such as essential components without security support. Our modelling approach is based on the commonly known vulnerability classifications Common Weakness Enumeration (CWE), Common Vulnerabilities and Exposures (CVE), and Common Vulnerability Scoring System (CVSS).

Analyzes how an attacker can propagate through a system. It will return a list of compromised architectural elements and a list of potentially compromised data.