Title :
A Generic Metamodel for IT Security Attack Modeling for Distributed Systems
Author :
Miede, André ; Nedyalkov, Nedislav ; Gottron, Christian ; Konig, Alexandra ; Repp, Nicolas ; Steinmetz, Ralf
Author_Institution :
Multimedia Commun. Lab. (KOM), Tech. Univ. Darmstadt, Darmstadt, Germany
Abstract :
Understanding and discussing the security aspects of IT systems during their development is challenging for both domain specialists and IT experts - neglecting this aspect leads to communication problems and, eventually, to less secure systems. An important factor for these challenges is the distribution and variety of basic IT security concepts, attacks, and countermeasures, e.g., in the standard literature. In this paper, we propose a generic metamodel for IT security capturing both its major concepts and their relationships to each other. With a focus on attacks, we show how this model is applied to different scenarios in distributed systems, i.e., Peer-to-Peer systems, Service-oriented Architectures, and Mobile ad hoc Networks. This allows for a better understanding of IT security in general and attacks in particular, thus, enabling effective communication between different parties during the development of security-critical IT systems.
Keywords :
metacomputing; mobile computing; peer-to-peer computing; security of data; software architecture; IT security; attack modeling; distributed systems; generic metamodel; mobile ad hoc networks; peer-to-peer systems; security-critical IT systems; service-oriented architectures; Authorization; Availability; Communication effectiveness; Communication system security; Concrete; Data security; Information security; Mobile ad hoc networks; Multimedia communication; Service oriented architecture; Attack Modeling; Distributed Systems; Metamodel; Security;
Conference_Titel :
Availability, Reliability, and Security, 2010. ARES '10 International Conference on
Conference_Location :
Krakow
Print_ISBN :
978-1-4244-5879-0
DOI :
10.1109/ARES.2010.17
