• DocumentCode
    2285434
  • Title

    Towards autonomic risk-aware security configuration

  • Author

    Ahmed, Mohammad Salim ; Al-Shaer, Ehab ; Taibah, Mohamed Mahmoud ; Abedin, Muhammad ; Khan, Latifur

  • Author_Institution
    Dept. of Comput. Sci., Univ. of Texas at Dallas, Dallas, TX
  • fYear
    2008
  • fDate
    7-11 April 2008
  • Firstpage
    722
  • Lastpage
    725
  • Abstract
    Security of a network depends on a number of dynamically changing factors. These include emergence of new vulnerabilities and threats, policy structure and network traffic. Due to the dynamic nature of these factors, identifying security metrics that measure objectively the quality of security configuration pose a major challenge. Moreover, this evaluation must be done dynamically to handle real time changes in the threat toward the network. In this paper, we extend our security metric framework that identifies and quantifies objectively the most significant security risk factors, which include existing vulnerabilities, historical trend of vulnerabilities of remotely accessible services, prediction of potential vulnerabilities for any general network service and their estimated severity and finally propagation of an attack within the network. We have implemented this framework as a user-friendly tool called Risk based prOactive seCurity cOnfiguration maNAger (ROCONA) and showed how this tool simplifies security configuration management using risk measurement and mitigation.
  • Keywords
    software tools; telecommunication computing; telecommunication network management; telecommunication security; telecommunication traffic; ROCONA; autonomic risk-aware security configuration; risk based proactive security configuration manager; security risk factors; user-friendly tool; Computer science; Computer security; Costs; Extraterrestrial measurements; Information security; Information systems; Risk analysis; Risk management; Telecommunication traffic; Traffic control;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Network Operations and Management Symposium, 2008. NOMS 2008. IEEE
  • Conference_Location
    Salvador, Bahia
  • ISSN
    1542-1201
  • Print_ISBN
    978-1-4244-2065-0
  • Electronic_ISBN
    1542-1201
  • Type

    conf

  • DOI
    10.1109/NOMS.2008.4575198
  • Filename
    4575198