Title :
A3: An Environment for Self-Adaptive Diagnosis and Immunization of Novel Attacks
Author :
Pal, Parama ; Schantz, Richard ; Paulos, Aaron ; Benyo, Balazs ; Johnson, D. ; Hibler, Mike ; Eide, E.
Author_Institution :
Raytheon BBN Technol., Cambridge, MA, USA
Abstract :
This paper describes an ongoing research effort aiming to use adaptation to defend individual applications against novel attacks. Application focused adaptive security spans adaptive use of security mechanisms in both the host and the network. The work presented in this paper is developing key infrastructure capabilities and supporting services including mandatory mediation of application I/O, record and replay of channel interaction, and VMI-based monitoring and analysis of execution that will facilitate replay-based diagnosis and patch derivation for attacks that succeed and go unnoticed until a known undesired condition manifests. After describing the basics, we present the results from our initial evaluation and outline the next steps.
Keywords :
fault tolerant computing; security of data; virtual machines; VMI-based monitoring; adaptive security mechanism; application input-output; attack immunization; attack self-adaptive diagnosis; channel interaction; replay-based diagnosis; virtual machines; adaptive defense; resilience; survivable application;
Conference_Titel :
Self-Adaptive and Self-Organizing Systems Workshops (SASOW), 2012 IEEE Sixth International Conference on
Conference_Location :
Lyon
Print_ISBN :
978-1-4673-5153-9
DOI :
10.1109/SASOW.2012.13
