From security modelling to run-time security monitoring

Antti Evesti, Eila Ovaska, Reijo Savola

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    Abstract

    In this paper we take the first steps from security modelling to run-time security monitoring. Providing full support for run-time security monitoring requires that following issues are solved: security concepts has to be defined in an unambiguous way, security level has to be defined and measured, and finally, software has to adapt itself based on measurements and requirements. This paper addresses the unambiguous definition of security by examining existing security ontologies. None of the existing ontologies is able to support run-time security monitoring as such, and there is a need to combine and widen these ontologies. In addition, this paper describes our vision how run-time security management can be achieved as the wholeness
    Original languageEnglish
    Title of host publicationProceedings of the Fifth European Conference on Model-Driven Architecture, SECMDA 2009
    EditorsAlessandra Bagnato
    Place of PublicationNetherlands
    Pages33-41
    Publication statusPublished - 2009
    MoE publication typeA4 Article in a conference publication
    EventEuropean Workshop on Security in Model Driven Architecture 2009, SECMDA 2009 - Enschede , Netherlands
    Duration: 24 Jun 200924 Jun 2009

    Workshop

    WorkshopEuropean Workshop on Security in Model Driven Architecture 2009, SECMDA 2009
    Abbreviated titleSECMDA 2009
    CountryNetherlands
    CityEnschede
    Period24/06/0924/06/09

      Fingerprint

    Keywords

    • Security ontology
    • security measuring

    Cite this

    Evesti, A., Ovaska, E., & Savola, R. (2009). From security modelling to run-time security monitoring. In A. Bagnato (Ed.), Proceedings of the Fifth European Conference on Model-Driven Architecture, SECMDA 2009 (pp. 33-41).