@book{JRC32883,
	editor = {},
	address = {New York (United States of America)},
	year = {2006},
	author = {Nai Fovino I and Masera M},
	isbn = {},
	abstract = {Cyber attacks are the core of any security assessment of ICT–based systems. One of the more promising research fields in this context is related to the representation of the attack patterns. Several are the models proposed to represent them; these models usually provide a generic representation of attacks. Conversely, the experience shows that attack profiles are strongly dependent upon several “boundary conditions”. This paper defends that from the security assessment perspective, it is necessary to integrate the knowledge contained in the attack patterns with “boundary” knowledge related to vulnerability of the target system and to the potential threats. In this paper, after a characterization of this “boundary knowledge”, we propose an n-dimensional view of the attack tree approach, integrating information on threats and vulnerabilities. Moreover, we show how to use this view to derive knowledge about the security exposure of a target system. 
		Keywords: Security assessment, Attack Pattern
		
		
		
		
		
		
		
		
		
		
		
		
		
		
		
		
		
		},
	title = {Through the Description of Attacks: a Multidimensional View},
	url = {},
	volume = {},
	number = {},
	journal = {},
	pages = {15-28},
	issn = {},
	publisher = {Springer-Verlag},
	doi = {}
}