Security-measurability-enhancing mechanisms for a distributed adaptive security monitoring system

Proceedings - 4th International Conference on Emerging Security Information, Systems and Technologies, SECURWARE 2010

Volumn , Issue , 2010, Pages 25-34

  Savola, Reijo M ^a   Heinonen, Petri ^a  

^a VTT TECHNICAL RESEARCH CENTRE OF FINLAND   (Finland)

Author keywords

Adaptive security management; Security metrics; Security monitoring

Indexed keywords

ADAPTIVE AND DISTRIBUTED; ADAPTIVE SECURITY; CRITICAL APPLICATIONS; SECURITY METRICS; SECURITY MONITORING; SELF-HEALING; SOFTWARE INTENSIVE SYSTEMS; SYSTEMATIC SECURITY;

DECISION MAKING; INDUSTRIAL MANAGEMENT;

SECURITY OF DATA;

EID: 79952066716     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SECURWARE.2010.12     Document Type: Conference Paper

References (39)

1. H. Abie, I. Dattani, M. Novkovic, J. Bigham, S. Topham, and R. Savola, "GEMOM - Significant and Measurable Progess Beyond the State of the Art," ICSNC 2008, Sliema, Malta, Oct. 26-31, 2008, pp. 191-196.
2. H. Abie, R. Savola, and I. Dattani, "Robust, Secure, Self-Adaptive and Resilient Messaging Middleware for Business Critical Systems," ADAPTIVE 2009, Athens/Glyfada, Greece, Nov. 15-20, 2009, pp. 153-160.
3. W. Jansen, "Directions in Security Metrics Research," U.S. National Institute of Standards and Technology (NIST), NISTIR 7564, Apr. 2009, 21 p.
4. R. Savola and H. Abie, "Development of Security Metrics for a Distributed Messaging System," AICT 2009, Baku, Azerbaijan, Oct. 14-16, 2009, 6 p.
5. R. Savola and H. Abie, "Development of Measurable Security for a Distributed Messaging System," International Journal on Advances in Security, Vol. 2, No. 4, 2009, pp. 358-380 (March 2010).
6. G. Jelen, "SSE-CMM Security Metrics," NIST and CSSPAB Workshop, Washington, D.C., USA, June 2000.
7. R. Savola and H. Abie, "Identification of Basic Measurable Security Components for a Distributed Messaging System," SECURWARE '09, Athens/Glyfada, Greece, Jun. 18-23, 2009, pp. 121-128.
8. D. S. Herrmann, "Complete Guide to Security and Privacy Metrics - Measuring Regulatory Compliance, Operational Resilience and ROI," Auerbach Publications, 2007, 824 p.
9. A. Jaquith, "Security Metrics: Replacing Fear, Uncertainty and Doubt," Addison-Wesley, 2007.
10. N. Bartol, B. Bates, K. M. Goertzel, and T. Winograd, "Measuring Cyber Security and Information Assurance: a State-of-the-Art Report," Inf. Assurance Tech. Analysis Center IATAC, May 2009.
11. R. Savola, "A Security Metrics Taxonomization Model for Software- Intensive Systems," Journal of Information Processing Systems, Vol. 5, No. 4, Dec. 2009, pp. 197-206.
12. C. Wang and W. A. Wulf, "Towards a Framework for Security Measurement", 20th National Information Systems Security Conference, Baltimore, MD, Oct. 1997, pp. 522-533.
13. J. R. Williams and G. F. Jelen, "A Framework for Reasoning about Assurance," Arca Systems, Inc., 1998, 43 p.
14. G. H. Kim and E. H. Spafford, "The Design and Implementation of Tripwire: a System Integrity Checker," Computer and Communications Security, Fairfax, VA, Nov. 2-4, 1994, pp. 18-29.
15. OWASP, Open Web Application Security Project. [On-line]. Available: www.owasp.org [April 14, 2010].
16. E. A. Nichols and G. Peterson, "A Metrics Framework to Drive Application Security Improvement," IEEE Security & Privacy, Mar./Apr. 2007, pp. 88-91.
17. M. Howard and D. LeBlanc, "Writing Secure Code," Microsoft Press, 2003, 768 p.
18. M. Schiffman, G. Eschelbeck, D. Ahmad, A. Wright, and S. Romanosky, "CVSS: A Common Vulnerability Scoring System," U.S. National Infrastructure Advisory Council (NIAC), 2004.
19. R. A. Martin, "Managing Vulnerabilities in Networked Systems," IEEE Computer Society Computer Magazine, Vol. 34, No. 11, Nov. 2001.
20. M. Barrett, C. Johnson, P. Mell, S. Quinn, and K. Scarfone, "Guide to Adopting and Using the Security Content Automation Protocol (SCAP)," NIST Special Publication 800-177 (Draft), U.S. National Institute of Standards and Technology, 2009.
21. R. A. Martin, "Making Security Measurable and Manageable," MILCOM '08, Nov. 16-19, 2008, pp. 1-9.
22. Web Application Security Consortium (WASC), "Threat Classification," Version 2.0. [Online]. Available: www.webappsec.org [April 14, 2010].
23. SANS Institute, "The Top Cyber Security Security Risks." [Online]. Available: www.sans.org/top-cyber-security-risks/ [April 14, 2010].
24. R. Savola and T. Frantti, "Core Security Parameters for VoIP in Ad Hoc Networks," WPMC '09, Sendai, Japan, Sep. 7-10, 2009, 5 p.
25. R. Seacord, "CERT Top 10 Secure Coding Practices." [Online]. Available: www.securecoding.cert.org [April 14, 2010].
26. R. Savola, "On the Feasibility of Utilizing Security Metrics in Software-Intensive Systems," International Journal of Computer Science and Network Security, Vol. 10, No. 1, Jan. 2010, pp. 230-239.
27. T. Kanstrén and R. Savola, "Definition of Core Requirements and a Reference Architecture for a Dependable, Secure and Adaptive Distributed Monitoring Framework," DEPEND 2010, Venice, Italy, July 18-25, 2010, 10 p.
28. P. Venables, "Security Monitoring in Heterogeneous Globally Distributed Environments," Information Security Technical Report, Vol. 3, No. 4, 1998, pp. 15-31.
29. G. Chockler, R. Melamed, Y. Tock, R. Vitenberg, "Constructing Scalable Overlays for Pub-Sub with Many Topics - Problems, Algorithms and Evaluation," PODC '07, Portland, Oregon, USA, 2007, pp. 109-118.
30. J. Quittek, A. Bulanza, S. Zander, C. Schmoll, M. Kundt, E. Boschi, J. Sliwinski, "MOME Project - State of Interoperability," MOME Project WP1 Deliverable 11, Technical Report, 2006.
31. Insecure.org. [Online]. Available: www.insecure.org [April 14, 2010].
32. th Int. Conf. on Computer Science, Research and Applications (IBIZA '08), Kazimierz Dolny, Poland, Jan. 31-Feb. 2, 2008.
33. Published in Annales UMCS, Informatica, AI 8, pp. 186-201.
34. E. Jean, Y. Jiao, A. R. Hurson, and T. E. Potok, "Boosting-based Distributed and Adaptive Security-Monitoring through Agent Collaboration," IEEE/WIC/ACM International Conferences on Web Intelligence and Intelligent Agent Technology 2007 - Workshops, pp. 516-520.
35. G. Spanoudakis, C. Kloukinas, K. Androutsopoulos, "Towards Security Monitoring Patterns," ACM Sympos. on Applied Computing, Seoul, Korea, 2007, pp. 1518-1525.
36. A. Evesti, E. Ovaska, and R. Savola, "From Security Modelling to Run-time Security Monitoring," SEC-MDA, Enschede, Netherlands, Jun. 24, 2009, pp. 33-41.
37. R. Bejtlich, "The Tao of Network Security Monitoring - Beyond Intrusion Detection," Addison-Wesley, 2004, 798 p.
38. A. Elkhodary, J. Whittle, "A Survey of Approaches to Adaptive Application Security," SEAMS '07, May 20-25, 2007.
39. S. Sadjadi, "A Survey of Adaptive Middleware," Technical Report MSU-CSE-03-35, Michigan State University, East Lansing, Michigan, Dec. 2003.