US 11,899,788 B2
Attack tree generation device, attack tree generation method, and computer readable medium
Ryosuke Shimabe, Tokyo (JP); Takeshi Asai, Tokyo (JP); and Kiyoto Kawauchi, Tokyo (JP)
Assigned to MITSUBISHI ELECTRIC CORPORATION, Tokyo (JP)
Filed by Mitsubishi Electric Corporation, Tokyo (JP)
Filed on Apr. 29, 2021, as Appl. No. 17/244,515.
Application 17/244,515 is a continuation of application No. PCT/JP2019/050000, filed on Dec. 20, 2019.
Claims priority of application No. PCT/JP2018/048282 (WO), filed on Dec. 27, 2018.
Prior Publication US 2021/0248231 A1, Aug. 12, 2021
Int. Cl. G06F 21/55 (2013.01)
CPC G06F 21/554 (2013.01) [G06F 2221/034 (2013.01)] 12 Claims
OG exemplary drawing
 
1. An attack tree generation device comprising:
processing circuitry
to divide a target system that is a target of a security countermeasure, into a plurality of sub-systems based on system configuration data indicating a configuration of the target system,
to select a sub-system in which a threat on security in the target system occurs, as a root system from among the plurality of sub-systems based on threat data indicating a content of the threat,
to execute an attack tree generation process on the root system, to thereby generate an attack tree of the root system as a root tree,
to select one sub-system or more located on an intrusion course to the root system in the target system, as one descendent system or more from among the plurality of sub-systems based on intrusion course data indicating the intrusion course,
to execute the attack tree generation process on each of the one descendent system or more, to thereby generate one attack tree or more corresponding to the one descendent system or more, as one descendent tree or more, and
to integrate the root tree and the one descendent tree or more, to thereby generate an attack tree of the target system.