An ontology-based approach to react to network attacks

Proceedings 2008 3rd International Conference on Risks and Security of Internet and Systems, CRiSIS 2008

Volumn , Issue , 2008, Pages 27-35

  Cuppens Boulahia, Nora ^a   Cuppens, Frédéric ^a   De Vergara, Jorge E López ^b   Vázquez, Enrique ^c   Guerra, Javier ^c   Debar, Hervé ^d  

^a ECOLE DES MINES DE NANTES   (France)

^b UNIVERSIDAD AUTÓNOMA DE MADRID   (Spain)

^c UNIVERSIDAD POLITÉCNICA DE MADRID   (Spain)

^d ORANGE LABS   (France)

Author keywords

Attack reaction; IDMEF; Ontology; OrBAC; OWL; Policy instantiation; SWRL

Indexed keywords

COMPUTER CRIME; INTERNET; INTERNET PROTOCOLS; QUALITY OF SERVICE; SECURITY SYSTEMS;

ATTACK REACTION; IDMEF; ORBAC; OWL; POLICY INSTANTIATION; SWRL;

ONTOLOGY;

EID: 63249101412     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CRISIS.2008.4757461     Document Type: Conference Paper

References (19)

1. A. Abou-El-kalam, P. Balbiani, S. Benferhat, F. Cuppens, Y. Deswarte, R. El-Baida, A. Mige, C. Saurel, and G. Trouessin. Organization based access control. In IEEE 4th International Workshop on Policies for Distributed Systems and Networks (POLICY 2003), Lake Como, Italy, 2003.
2. F. Autrel, F. Cuppens, N. Cuppens-Boulahia, and C. Coma. MotOrBAC 2: A security policy tool. In 3rd joint SAR-SSI conference, Loctudy, France, October 2008.
3. J. M. Bradshaw, A. Uszok, R. Jeffers, N. Suri, P. Hayes, M. H. Burstein, A. Acquisti, B. Benyo, M. R. Breedy, M. Carvalho, D. Diller, M. Johnson, S. Kulkarni, J. Lott, M. Sierhuis, and R. V. Hoof. Representation and reasoning for DAML-based policy and domain services in KAoS and Nomad. In Autonomous Agents and Multi-Agent Systems Conference (AAMAS 2003), Melbourne, Australia, July 2003.
4. F. Cuppens, N. Cuppens-Boulahia, and M. B. Ghorbel. High level conflict management strategies in advanced access control models. Electron. Notes Theor. Comput. Sci., 186:3- 26, 2007.
5. F. Cuppens, N. Cuppens-Boulahia, T. Sans, and A. Miège. A formal approach to specify and deploy a network security policy. In Second Workshop on Formal Aspects in Security and Trust (FAST), Toulouse, France, August 2004.
6. F. Cuppens and A. Miège. Modelling Contexts in the Or- BAC Model. In 19th Annual Computer Security Applications Conference (ACSAC '03), 2003.
7. N. Damianou, N. Dulay, E. Lupu, and M. Sloman. The Ponder Policy Specification Language. In Workshop on Policies for Distributed Systems and Networks (POLICY2001). Lecture Notes in Computer Science, Vol. 1995, 2001.
8. H. Debar, D. Curry, and B. Feinstein. The Intrusion Detection Message Exchange Format (IDMEF). In IETF Request for Comments 4765, March 2006.
9. H. Debar, Y. Thomas, N. Boulahia-Cuppens, and F. Cuppens. Using contextual security policies for threat response. In Third GI International Conference on Detection of Intrusions & Malware, and Vulnerability Assessment (DIMVA), Berlin, Germany, July 2006.
10. J. Garca-Alfara, F. Autrel, J. Borrell, S. Castillo, F. Cuppens, and G. Navarro. Decentralized Publish-Subscribe System to Prevent Coordinated Attacks via Alert Correlation. In 6th International Conference on Information and Communications Security (ICICS), pages 223-235, Malaga, Spain, 2004.
11. D. Geneiatakis and C. Lambrinoudakis. An ontology description for SIP security flaws. Computer Communications, 30(6):1367-1374, March 2007.
12. T. R. Gruber. A Translation Approach to Portable Ontology Specifications. Knowledge Acquisition, 5(2):199-220, 1993.
13. A. Guerrero, V. Villagrá, and J. B. J.E. López de Vergara, A. Sánchez-Macián. Ontology-based Policy Refinement Using SWRL Rules for Management Information Definitions in OWL. In Lecture Notes in Computer Science, Vol 4269, pages 227-232, 2006.
14. I. Horrocks, P. F. Patel-Schneider, H. Boley, S. Tabet, B. Grosof, and M. Dean. SWRL: A Semantic Web Rule Language Combining OWL and RuleML. In W3C Member Submission, May 2004.
15. L. Kagal, T. Finin, and A. Johshi. A Policy Language for Pervasive Computing Environment. In IEEE 4th International Workshop on Policies for Distributed Systems and Networks (POLICY 2003), Lake Como, Italy, 2003.
16. R. A. Martin. Managing Vulnerabilities in Networked Systems. IEEE Computer Magazine, 34(11):32-38, November 2001.
17. B. Moore, E. Elleson, J. Strassner, and A. Westerinen. Policy Core Information Model - Version 1 Specification. In IETF Request For Comments 3060, February 2001.
18. M. K. Smith, C. Welty, and D. L. McGuinness. OWL Web Ontology Language Guide. In W3C Recommendation, February 2004.
19. J. Undercoffer, A. Joshi, and A. Pinkston. Modeling computer attacks: an ontology for intrusion detection. In Lecture Notes in Computer Science 2820, pages 113-135, 2003.