Ontology-based security adaptation at run-time

Proceedings - 2010 4th IEEE International Conference on Self-Adaptive and Self-Organizing Systems, SASO 2010

Volumn , Issue , 2010, Pages 204-212

  Evesti, Antti ^a   Ovaska, Eila ^a  

^a VTT TECHNICAL RESEARCH CENTRE OF FINLAND   (Finland)

Author keywords

Dynamic adaptation; Quality management; Security ontology

Indexed keywords

DYNAMIC ADAPTATIONS; ENVIRONMENT CHANGE; ONTOLOGY-BASED; RUNTIMES; SECURITY MEASUREMENT; SECURITY MECHANISM; SECURITY OBJECTIVES; SECURITY ONTOLOGY; SECURITY REQUIREMENTS; SMART SPACE; USER ACTION;

CYBERNETICS; DYNAMICS; QUALITY CONTROL; QUALITY MANAGEMENT;

ONTOLOGY;

EID: 79952063499     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SASO.2010.11     Document Type: Conference Paper

References (25)

1. H. Hinton, C. Cowan, L. Delcambre and S. Bowers. "SAM: Security Adaptation Manager," Proceedings of 15th Annual Computer Security Applications Conference 1999 (ACSAC '99), pp. 361-370, 1999.
2. M. Alia and M. Lacoste. "A QoS and security adaptation model for autonomic pervasive systems," 32nd Annual IEEE International Computer Software and Applications Conference, COMPSAC 2008, pp. 943-948, 2008.
3. C. J. Lamprecht and A. P. A. van Moorsel. "Runtime Security Adaptation Using Adaptive SSL," Dependable Computing, 2008. PRDC '08. 14th IEEE Pacific Rim International Symposium, pp. 305-312, 2008.
4. C. J. Lamprecht and A. P. A. van Moorsel. "Adaptive SSL: Design, Implementation and Overhead Analysis," First International Conference on Self-Adaptive and Self-Organizing Systems, 2007. SASO '07., pp. 289-294, 2007.
5. V. Myllärniemi, M. Raatikainen and T. Männistö. "KumbangSec: An approach for modelling functional and security variability in software architectures," First International Workshop on Variability Modelling of Software-Intensive Systems, pp. 61-70, 2007.
6. ISO/IEC 9126-1:2001. Software Engineering - Product Quality - Part 1: Quality Model. 2001,
7. A. Avižienis, J. -. Laprie, B. Randell and C. Landwehr, "Basic concepts and taxonomy of dependable and secure computing," IEEE Transactions on Dependable and Secure Computing, vol. 1, pp. 11-33, 2004.
8. ISO/IEC 15408-1:2009, Common Criteria for Information Technology Security Evaluation - Part 1: Introduction and General Model. International Organization of Standardization, 2009,
9. G. Stoneburner, A. Goguen and A. Feringa. "Risk management guide for information technology systems," Special Publication 800-30, 2002.
10. G. Chen and D. Kotz. "A Survey of Context-Aware Mobile Computing Research," Technical Report TR2000-3812000.
11. A. Evesti, E. Ovaska and R. Savola, "From security modelling to run-time security monitoring," European Workshop on Security in Model Driven Architecture (SECMDA), pp. 33-41, 23-26 Jun. 2009. 2009.
12. M. Matinlassi and E. Niemelä. "The impact of maintainability on component-based software systems," 29th Euromicro Conference, pp. 25-32, 2003.
13. J. Zhou. "Knowledge Dichotomy and Semantic Knowledge Management," Industrial Applications of Semantic Web, pp. 305-316, 2005.
14. C. Blanco, J. Lasheras, R. Valencia-García, E. Fernández-Medina, A. Toval and M. Piattini. "A systematic review and comparison of security ontologies," 3rd International Conference on Availability, Security, and Reliability (ARES 2008), pp. 813-820, 2008.
15. B. Tsoumas and D. Gritzalis. "Towards an Ontology-based Security Management," 20th Advanced Information Networking and Applications 2006 (AINA 2006), pp. 985-992, 2006.
16. P. Savolainen, E. Niemelä and R. Savola. "A taxonomy of information security for service centric systems," 33rd EUROMICRO Conference on Software Engineering and Advanced Applications (SEAA 2007), pp. 5-12, 2007.
17. G. Denker, L. Kagal and T. Finin. "Security in the Semantic Web using OWL," Information Security Technical Report 10(1), pp. 51-58. 2005.
18. A. Kim, J. Luo and M. Kang. "Security Ontology for annotating resources," LNCS, vol. 3761, pp. 1483-1499, 2005.
19. A. Herzog, N. Shahmehri and C. Duma. "An ontology of information security," Techniques and Applications for Advanced Information Privacy and Security: Emerging Organizational, Ethical, and Human Issues pp. 278-301. 2009.
20. R. M. Savola and H. Abie. "On-Line and off-line security measurement framework for mobile ad hoc networks," Journal of Networks, 4(7), pp. 565-579, 2009.
21. D. S. Herrmann. Complete Guide to Security and Privacy Metrics: Measuring Regulatory Compliance, Operational Resilience, and ROI. 2007,
22. A. Hunstad, J. Hallberg and R. Andersson. "Measuring IT security - A method based on Common Criteria's security functional requirements," 5th Annual IEEE System, Man and Cybernetics Information Assurance Workshop (SMC), pp. 226-233, 2004.
23. R. J. Anderson. Security Engineering: A Guide to Building Dependable Distributed Systems. (2nd ed.) 2008,
24. A. Evesti, M. Eteläperä, J. Kiljander, J. Kuusijärvi, A. Purhonen and S. Stenudd, "Semantic Information Interoperability in Smart Spaces," 8th International Conference on Mobile and Ubiquitous Multimedia (MUM'09), 22-25 Nov. 2009.
25. Smart-M3, http://sourceforge.net/projects/smart-m3/