Restructuring Attack Trees to Identify Incorrect or Missing Relationships between Nodes accepted for WESPr-18 collocated at APSEC2018

Hua Cai, Hironori Washizaki, Yoshiaki Fukazawa, Takao Okubo, Haruhiko Kaiya, Nobukazu Yoshioka, “Restructuring Attack Trees to Identify Incorrect or Missing Relationships between Nodes,” The International Workshop on Evidence-based Security and Privacy in the Wild 2018 (WESPr-18), December 4, 2018 in conjunction with APEC 2018 in Nara, Japan

Attack trees are often used to analyze a system or detect application programs vulnerable to attack. To aid in software design, a method to create safe and stable systems should be created. An attack tree has multiple levels and is composed of different nodes, including root nodes, sub nodes, and leaf nodes. These nodes can be separated into parent nodes and child nodes when discussing their relationship. Child nodes are defined as conditions that must be satisfied to make their direct parent nodes true. Although an attack tree can express vertical relationships between nodes well, it usually ignores parallel relationships of different branch nodes. Moreover, the relationship between parent-child nodes may be inaccurate due to a poorly designed attack tree. To solve these problems, we present a new way to derive an attack tree system in which the initial attack tree is reconstructed into a new attack tree using Interpretive Structural Modeling (abbr. ISM). The proposed method can easily repair the relationship between parent nodes and child nodes by removing parallel relationships. Finally, the proposed method derives a clear attack tree for more precise system’s threat analysis and better defensive measures.

【参加募集】enPiT-Pro スマートエスイ― 2018年度 修了式・シンポジウム/懇親会

enPiT-Pro スマートエスイーシンポジウムを12月10日(月)開催。AI・IoT×ビジネス社会人教育成果報告と共に、演習で取り上げている機械学習システムのテストに有効なメタモルフィックテストについて発明者TY Chen教授直々に解説いただきます(同時通訳)。ぜひご参加ください。

Prof. Washizaki co-edited JSS Special Issue on Software Engineering Education and Training

Prof. Washizaki co-edited special issue of Software Engineering Education and Training at Journal of Systems and Software (JSS).

鷲崎教授がアプリ甲子園2018決勝にて審査員を担当 10月14日


Systematic Review of Utilized ICTs in Quality Assurance and Accreditation of Higher Education and a Case Study of Developing Country, accepted for EAI Endorsed Transactions on e-Learning (DBLP indexed)

Ali Sajjad Haris, Hironori Washizaki, Yoshiaki Fukazawa, “Systematic Review of Utilized ICTs in Quality Assurance and Accreditation of Higher Education and a Case Study of Developing Country,” EAI Endorsed Transactions on e-Learning, Special Issue on Information systems enabling digitalized advances in society, 2018 (DBLP indexed)(to appear)

Numerous studies and surveys have examined the utilization of Information and Communication Technologies (ICTs) in Higher Education (HE), but the lack of studies on the utilization of ICTs in Quality Assurance and Accreditation (QAA) of HE led us to perform a Systematic Literature Review (SLR). This review mainly benefits QAA agencies and researchers interested in utilizing ICTs for QAA of HE. Several contributions of ICTs to QAA of HE are identified. 1) Compared to QAA agencies, Higher Education Institutions (HEIs) are more likely to implement ICTs. 2) Most ICTs in HEIs are for Quality Assurance (QA). 3) Most previous studies were conducted in Europe, demonstrating that efforts have been made to align QAA agencies and HEI QAA units with European Standards. Consequently, ICTs are more often utilized by European HEIs. Furthermore, we investigated the QAA status in a developing country (Afghanistan) as a case study.

総務省 地域ICTクラブ採択「こどものミライ協議会」の一環として大田区PIOにてメンター講習会を2018年10月6日実施

総務省 地域ICTクラブ採択「こどものミライ協議会」一環として齋藤講師により大田区PIOにて地域の方々、高校生といったメンターの皆様へ講習会開催。TAとして三浦君・李君も手伝ってくれました。Scratch&ラズパイという王道内容。成果報告会は2/23早稲田大学にて一般公開予定。…/…/kyouiku_joho-ka/IoT_learning.html