CIPRNet CIP glossary

Attack tree

“Attack trees provide a formal, methodical way of describing the security of systems, based on varying attacks. Basically, you represent attacks against a system in a tree structure, with the goal as the root node and different ways of achieving that..

..goal as leaf nodes.” (Source: Schneier, 1999)