Title :
From Monitoring Templates to Security Monitoring and Threat Detection
Author :
Amalio, N. ; Spanoudakis, George
Author_Institution :
Dept of Comput., City Univ. London, London
Abstract :
This paper presents our pattern-based approach to run-time requirements monitoring and threat detection being developed as part of an approach to build frameworks supporting the construction of secure and dependable systems for ambient intelligence. Our patterns infra-structure is based on templates. From templates we generate event-calculus formulas expressing security requirements to monitor at run-time. From these theories we generate attack signatures, describing threats or possible attacks to the system. At run-time, we evaluate the likelihood of threats from run-time observations using a probabilistic model based on Bayesian networks.
Keywords :
belief networks; formal languages; formal specification; probability; security of data; system monitoring; Bayesian network; ambient intelligence; attack signature; event-calculus formula; formal language; formal specification; pattern-based approach; probabilistic model; run-time requirement monitoring; security monitoring; threat detection; Ambient intelligence; Automation; Bayesian methods; Calculus; Computerized monitoring; Concrete; Context-aware services; Information security; Pervasive computing; Runtime; Event-Calculus.; Security; intrusion-detection; patterns; run-time monitoring;
Conference_Titel :
Emerging Security Information, Systems and Technologies, 2008. SECURWARE '08. Second International Conference on
Conference_Location :
Cap Esterel
Print_ISBN :
978-0-7695-3329-2
Electronic_ISBN :
978-0-7695-3329-2
DOI :
10.1109/SECURWARE.2008.58
