ExercisesSecurity Architecture Language › Attack Trees and Attack Paths

Attack Trees and Attack Paths

5 questions · Security Architecture Language

1. A security architect draws a tree diagram where the root node is 'Attacker accesses customer PII' and branches represent different ways this goal could be achieved. What is this diagram called?
2. In an attack tree, a node labelled 'AND' means the attacker must complete both child actions to proceed. A node labelled 'OR' means the attacker only needs to complete one. What do these nodes model?
3. The team identifies the attack path that combines 3 vulnerabilities and requires the least attacker skill to exploit. They prioritise fixing the components on this path first. What have they identified?
4. The root of the attack tree is labelled 'Achieve persistent access to production database.' What does this root node represent?
5. An attack tree leaf node represents a specific, primitive action the attacker must take (e.g., 'Send a phishing email to an admin'). What is notable about leaf nodes versus intermediate nodes?

Exercise complete!

out of 5 questions