ADEPTS: Adaptive intrusion response using attack graphs in an e-commerce environment

Proceedings of the International Conference on Dependable Systems and Networks

Volumn , Issue , 2005, Pages 508-517

  Foo, Bingrui ^a   Wu, Yu Sung ^a   Mao, Yu Chun ^a   Bagchi, Saurabh ^a   Spafford, Eugene ^b  

^a Purdue University   (United States)

^b PURDUE UNIVERSITY   (United States)

Author keywords

Attack graphs; Automated intrusion response; Distributed e commerce systems; Intrusion containment; Survivability

Indexed keywords

ADAPTIVE INTRUSION RESPONSE; ATTACK GRAPHS; DISTRIBUTED E-COMMERCE SYSTEMS; MALICIOUS ATTACKS;

ALGORITHMS; AUTOMATION; DISTRIBUTED COMPUTER SYSTEMS; ELECTRONIC COMMERCE; FINANCE; GRAPH THEORY;

SECURITY OF DATA;

EID: 27544503196     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (20)

1. Y.-S. Wu, B. Foo, Y. Mei, and S. Bagchi, "Collaborative Intrusion Detection System (CIDS): A Framework for Accurate and Efficient IDS", Proceedings of the 19th Annual Computer Security Applications Conference (ACSAC), Dec 8-12, 2003.
2. R. Ellison, R. Linger, T. Longstaff, and N. Mead, "Case Study in Survivable Network System Analysis", Technical Report CMU/SEI-98-TR-014, SEI, CMU, 1998.
3. F. Cohen, "Simulating Cyber Attacks, Defenses, and Consequences," Available at http://all.net/journal/ntb/simulate/simulate. html, 1999.
4. R. Anderson, A. Hearn, and R. Hundley, "Studies of Cyberspace Security Issues and the Concept of a U.S. Minimum Essential Information Infrastructure", Proceedings of the 1997 Information Survivability Workshop, CERT, 1997.
5. T. Toth and C. Kruegel, "Evaluating the Impact of Automated Intrusion Response Mechanisms", 18th Annual Computer Security Applications Conference (ACSAC), Dec 9-13, 2002.
6. E. Fisch, "Intrusion Damage Control and Assessment: A Taxonomy and Implementation of Automated Responses to Intrusive Behavior", Ph.D. Dissertation, Texas A&M U, College Station, TX, 1996.
7. C. Carver and U. Pooch, "An Intrusion Response Taxonomy and its Role in Automatic Intrusion Response", Proceedings of the 2000 IEEE Workshop on Information Assurance and Security, USMA, West Point, NY, 2000.
8. U. Lindqvist and E. Jonsson, "How to Systematically Classify Computer Security Intrusions", Proceedings of the 1997 IEEE Symposium on Security and Privacy, Oakland, CA, May 4-7, 1997, pp. 154-163.
9. G. White, E. Fisch, and U. Pooch, "Cooperating Security Managers: A Peer-based Intrusion Detection System", IEEE Network, vol 10, no. 1, 1996, pp. 20-23.
10. P. Porras and P. Neumann, "EMERALD: Event Monitoring Enabling Responses to Anomalous Live Disturbances," Proceedings of the 20th National Information Systems Security Conference, Baltimore, MD, Oct 7-10, 1997, pp. 353-365.
11. D. Ragsdale, C. Carver, J. Humphries, and U. Pooch, "Adaptation Techniques for Intrusion Detection and Intrusion Response Systems", Proceedings of the IEEE International Conference on Systems, Man, and Cybernetics, Nashville, Tennessee, Oct 8-11, 2000, pp. 2344-2349.
12. D. Sterne, K. Djahandari, B. Wilson, B. Babson, D. Schnackenberg, H. Holliday, and T. Reid, "Autonomic Response to Distributed Denial of Service Attacks", Proceedings of the 4th International Symposium on Rapid Advances in Intrusion Detection (RAID), Davis, CA, USA, Oct 2001.
13. R. Mahajan, S. Bellovin, S. Floyd, J. Joannidis, V. Paxson, and S. Shenker, "Controlling High Bandwidth Aggregates in the Network", AT&T Center for Internet Research at ICSI (ACIRI), DRAFT, Available at http://www.research.att.com/~smb/papers/DDOS-lacc.pdf, Feb 5, 2001.
14. P. Brooke and R. Paige, "Fault Trees for Security System Analysis and Design", Journal of Computers and Security, 22(3):256-264, Elsevier, May 2003.
15. G. Helmer, J. Wong, M. Slagell, V. Honavar, L. Miller, and R. Lutz, "A Software Fault Tree Approach to Requirements Analysis of an Intrusion Detection System", Proceedings of the 1st Symposium on Requirements Engineering for Information Security, 2001.
16. M. Dacier, Y. Deswarte, and M. Kaaniche, "Quantitative Assessment of Operational Security: Models and Tools", LAAS Research Report 96493, May 1996
17. (Extended version of "Models and Tools for Quantitative Assessment of Operational Security," Proc IFIP/SEC 1996).
18. R. Ortalo, Y. Deswarte, M. Kaaniche, "Experimenting with Quantitative Evaluation Tools for Monitoring Operational Security", IEEE Transactions on Software Engineering, vol 25, issue 5, pp. 633-650, Sep-Oct 1999.
19. A. Brown, G. Kar, A. Keller, "An Active Approach to Characterizing Dynamic Dependencies for Problem Determination in a Distributed Application Environment", IEEE/IFIP International Symposium on Integrated Network Management, pp. 377-390, 2001.
20. C. Carver, J. Hill, and U. Pooch, "Limiting Uncertainty in Intrusion Response", Proceedings of the 2001 IEEE Workshop on Information Assurance and Security, USMA, West Point, NY, Jun 5-6, 2001.