Abstract
New technologies have increased the dynamism of distributed systems; advances such as Software Defined Networking (SDN) and cloud computing enable unprecedented service flexibility and scalability. By their nature, they are in a constant state of flux, presenting tough challenges for system security. Here an adaptive - in real time - risk management system capable of keeping abreast of these developments is considered. This paper presents an on-going work on combining a hierarchical threat ontology, real-time risk analysis, and SDN to an efficient whole. The main contribution of this paper is on finding the suitable architectures, components, necessary requirements, and favorable modifications on the systems and system modelling (including the models involving the security analysis) to reach this goal.
Original language | English |
---|---|
Title of host publication | Proceedings of the ECSA 2014 Workshops and Tool Demos Track - European Conference on Software Architecture, ECSAW 2014 |
Publisher | Association for Computing Machinery ACM |
ISBN (Print) | 978-1-4503-2778-7 |
DOIs | |
Publication status | Published - 1 Jan 2014 |
MoE publication type | B3 Non-refereed article in conference proceedings |
Event | 8th European Conference on Software Architecture Workshops, ECSAW 2014 - Vienna, Austria Duration: 25 Aug 2014 → 29 Aug 2014 |
Conference
Conference | 8th European Conference on Software Architecture Workshops, ECSAW 2014 |
---|---|
Abbreviated title | ECSAW 2014 |
Country/Territory | Austria |
City | Vienna |
Period | 25/08/14 → 29/08/14 |
Keywords
- Adaptive security
- Dempster-Schafer
- Dezert-Smarandache
- Neural Network inspired Fuzzy C-means
- SDN
- Threat ontology