Title :
Supporting vulnerability awareness in autonomic networks and systems with OVAL
Author :
Barrère, Martín ; Badonnel, Rémi ; Festor, Olivier
Author_Institution :
LORIA, INRIA Nancy Grand Est, Villers Les Nancy, France
Abstract :
Changes that are operated by autonomic networks and systems may generate vulnerabilities and increase the exposure to security attacks. We present in this paper a new approach for increasing vulnerability awareness in such self-managed environments. Our objective is to enable autonomic networks to take advantage of the knowledge provided by vulnerability descriptions in order to maintain safe configurations. In that context, we propose a modeling and an architecture for automatically translating these descriptions into policy rules that are interpretable by an autonomic configuration system. We also describe an implementation prototype and evaluate its performance through an extensive set of experiments.
Keywords :
computer network security; programming languages; OVAL language; autonomic configuration system; autonomic network; open vulnerability and assessment language; vulnerability awareness; vulnerability description; Automation; Computer architecture; Context; Knowledge engineering; Maintenance engineering; Protocols; Security;
Conference_Titel :
Network and Service Management (CNSM), 2011 7th International Conference on
Conference_Location :
Paris
Print_ISBN :
978-1-4577-1588-4
Electronic_ISBN :
978-3-901882-44-9
