Abstract
This paper describes how software is able to autonomously adapt its
security mechanisms based on knowledge from security ontology. Security
adaptation is required because a software’s environment changes during
run-time. Thus, all security requirements cannot be defined beforehand. To
achieve security adaptation, we have combined a security ontology that defines
security mechanisms, security objectives, and high level security
measurements. The run-time security adaptation utilises this security ontology
to adapt security mechanisms or their parameters to fulfil security
requirements for each environment and usage situation. The novelty of this
approach comes from the utilisation of ontologies and security measurements,
which makes adaptation flexible. We validate our security adaptation with a
case study in a smart space environment. The case study proves that security
adaptation is able to work autonomously without other user actions.
| Original language | English |
|---|---|
| Title of host publication | Proceedings |
| Subtitle of host publication | Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems, SASO 2010 |
| Publisher | IEEE Institute of Electrical and Electronic Engineers |
| Pages | 204-212 |
| ISBN (Print) | 978-0-7695-4232-4, 978-1-4244-8537-6 |
| DOIs | |
| Publication status | Published - 2010 |
| MoE publication type | A4 Article in a conference publication |
| Event | Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems, SASO 2010 - Budapest, Hungary Duration: 27 Sept 2010 → 1 Oct 2010 |
Conference
| Conference | Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems, SASO 2010 |
|---|---|
| Abbreviated title | SASO 2010 |
| Country/Territory | Hungary |
| City | Budapest |
| Period | 27/09/10 → 1/10/10 |
Keywords
- Security ontology
- dynamic adaptation
- quality management