Bridging Two Worlds: Reconciling Practical Risk Assessment Methodologies with Theory of Attack Trees.