Title :
SAM: Security Adaptation Manager
Author :
Hinton, Heather ; Cowan, Crispin ; Delcambre, Lois ; Bowers, Shawn
Author_Institution :
Ryerson Polytech. Snst., Camnada
Abstract :
In the trade-offs between security and performance, it seems that security is always the loser. If we allow for adaptive security, we can at least ensure that security and performance are treated somewhat equally. Using adaptive security, we can allow a system to exist in a less secure, more performant state until it comes under attack. We then adapt the system to a more secure, less performant implementation. In this paper, we introduce the Security Adaptation Manager, or SAM. We describe SAM and how we have implemented SAM to take advantage of the different protection strengths offered by the StackGuard compiler. Using SAM to provide StackGuard-based adaptive security provides a form of misuse-based intrusion detection, capable of detecting known and novel attacks
Keywords :
security of data; SAM; Security Adaptation Manager; StackGuard compiler; adaptive security; attack detection; misuse-based intrusion detection; performance; protection; Bismuth;
Conference_Titel :
Computer Security Applications Conference, 1999. (ACSAC '99) Proceedings. 15th Annual
Conference_Location :
Phoenix, AZ
Print_ISBN :
0-7695-0346-2
DOI :
10.1109/CSAC.1999.816047
