Title :
Policykeeper: Recommending Proper Security Mechanisms Based on the Severity of Vulnerability Considering User Experience
Author :
Mutian Yang ; Jingzheng Wu ; Yanjun Wu ; Zhifei Wu
Author_Institution :
Inst. of Software, Beijing, China
Abstract :
The current statistics of vulnerability indicates that the security mechanisms become more important to protect the security of operating system than before. The security mechanism is regarded as an effective method of defence. However it is a great challenge to balance the security assurance and the user experience. In this paper, we propose the Policy keeper, which is a method of recommending the security mechanisms based on the severity of vulnerability, referencing the Common Vulnerability Scoring System (CVSS), considering the user experience. An algorithm is designed to transform the adaptability of a security mechanism into the numeric values which are easy to calculate and mine. The prototype is implemented. The experiment results show that Policy keeper can effectively balance the strength of security mechanisms and the user experience, recommend the appropriate security mechanisms to the operating systems.
Keywords :
operating systems (computers); security of data; CVSS; common vulnerability scoring system; operating systems; policy keeper; proper security mechanisms; security assurance; user experience; Algorithm design and analysis; Androids; Equations; Humanoid robots; Operating systems; Security; CVSS; Vulnerability; recommendation; security mechanism; user experience;
Conference_Titel :
Software Security and Reliability-Companion (SERE-C), 2013 IEEE 7th International Conference on
Conference_Location :
Gaithersburg, MD
Print_ISBN :
978-1-4799-2924-5
DOI :
10.1109/SERE-C.2013.19
