Rodríguez, Ricardo J; Marrone, Stefano
Model-Based Vulnerability Assessment of Self-Adaptive Protection Systems Book Section
In: Novais, Paulo; Camacho, David; Analide, Cesar; Seghrouchni, Amal El Fallah; Badica, Costin (Ed.): Intelligent Distributed Computing IX, vol. 616, pp. 439–449, Springer International Publishing, 2016, ISBN: 978-3-319-25015-1.
Abstract | Links | BibTeX | Tags: Dynamic Bayesian Networks, model-based, security assessment, vulnerability
@incollection{RM-WSRL-16,
title = {Model-Based Vulnerability Assessment of Self-Adaptive Protection Systems},
author = {Ricardo J Rodríguez and Stefano Marrone},
editor = {Paulo Novais and David Camacho and Cesar Analide and Amal El Fallah Seghrouchni and Costin Badica},
url = {http://webdiis.unizar.es/~ricardo/files/papers/RM-WSRL-16.pdf},
doi = {10.1007/978-3-319-25017-5_41},
isbn = {978-3-319-25015-1},
year = {2016},
date = {2016-01-01},
booktitle = {Intelligent Distributed Computing IX},
volume = {616},
pages = {439--449},
publisher = {Springer International Publishing},
series = {Studies in Computational Intelligence},
abstract = {Security mechanisms are at the base of modern computer systems, demanded to be more and more reactive to changing environments and malicious intentions. Security policies unable to change in time are destined to be exploited and thus, system security compromised. However, the ability to properly change security policies is only possible once the most effective mechanism to adopt under specific conditions is known. This paper proposes a model-based approach to accomplish this goal: a vulnerability model of the system is built by means of a model-based, layered security approach, and used to quantitatively evaluate the best protection mechanism at a given time and hence, to adapt the system to changing environments. The evaluation relies on the use of a powerful, flexible formalism such as Dynamic Bayesian Networks.},
keywords = {Dynamic Bayesian Networks, model-based, security assessment, vulnerability},
pubstate = {published},
tppubtype = {incollection}
}
Security mechanisms are at the base of modern computer systems, demanded to be more and more reactive to changing environments and malicious intentions. Security policies unable to change in time are destined to be exploited and thus, system security compromised. However, the ability to properly change security policies is only possible once the most effective mechanism to adopt under specific conditions is known. This paper proposes a model-based approach to accomplish this goal: a vulnerability model of the system is built by means of a model-based, layered security approach, and used to quantitatively evaluate the best protection mechanism at a given time and hence, to adapt the system to changing environments. The evaluation relies on the use of a powerful, flexible formalism such as Dynamic Bayesian Networks.