title: Bringing ATTop to the Top
keywords: Attack Trees, Model-driven engineering, Software engineering
topics: Dependability, security and performance , Software Technology
committee: Mariƫlle Stoelinga ,
Stefano Schivo
type: Research Project


Attack Trees are a popular way to concisely describe the various routes a malicious attacker could follow in order to threaten an asset. The popularity of Attack Trees has let a number of analysis tools thrive, each with their strong points and specializations. However, the variety of tools dealing with Attack Trees has also a negative aspect: while they all describe the same concepts, it is very unlikely that we can simply take a model written with tool A and analyse it using tool B.

ATTop is a software tool that builds a bridge between different ways to represent Attack Trees: thanks to a central Attack Tree meta-model, it allows to translate Attack Tree models between different formats. Additionally, it adds the possibility to use other third-party tools to analyse Attack Trees more in detail.

We propose to further develop and improve the ATTop tool, and to make it even more useful for the security community by improving its analysis capabilities and its usability by non-experts in formal methods.