DocumentCode
2285434
Title
Towards autonomic risk-aware security configuration
Author
Ahmed, Mohammad Salim ; Al-Shaer, Ehab ; Taibah, Mohamed Mahmoud ; Abedin, Muhammad ; Khan, Latifur
Author_Institution
Dept. of Comput. Sci., Univ. of Texas at Dallas, Dallas, TX
fYear
2008
fDate
7-11 April 2008
Firstpage
722
Lastpage
725
Abstract
Security of a network depends on a number of dynamically changing factors. These include emergence of new vulnerabilities and threats, policy structure and network traffic. Due to the dynamic nature of these factors, identifying security metrics that measure objectively the quality of security configuration pose a major challenge. Moreover, this evaluation must be done dynamically to handle real time changes in the threat toward the network. In this paper, we extend our security metric framework that identifies and quantifies objectively the most significant security risk factors, which include existing vulnerabilities, historical trend of vulnerabilities of remotely accessible services, prediction of potential vulnerabilities for any general network service and their estimated severity and finally propagation of an attack within the network. We have implemented this framework as a user-friendly tool called Risk based prOactive seCurity cOnfiguration maNAger (ROCONA) and showed how this tool simplifies security configuration management using risk measurement and mitigation.
Keywords
software tools; telecommunication computing; telecommunication network management; telecommunication security; telecommunication traffic; ROCONA; autonomic risk-aware security configuration; risk based proactive security configuration manager; security risk factors; user-friendly tool; Computer science; Computer security; Costs; Extraterrestrial measurements; Information security; Information systems; Risk analysis; Risk management; Telecommunication traffic; Traffic control;
fLanguage
English
Publisher
ieee
Conference_Titel
Network Operations and Management Symposium, 2008. NOMS 2008. IEEE
Conference_Location
Salvador, Bahia
ISSN
1542-1201
Print_ISBN
978-1-4244-2065-0
Electronic_ISBN
1542-1201
Type
conf
DOI
10.1109/NOMS.2008.4575198
Filename
4575198
Link To Document