Towards Action-Based Adaptive Security
نویسندگان
چکیده
Modern software systems often operate in highly dynamic and changing environments. Security requirements are also often subject to change due to the emergence of new threats or change of regulations. Adaptive security aims to enable software systems adjust their protection mechanisms in the presence of changes both in their operational environment and security requirements. Such highly dynamic and uncertain circumstances ask for the design of systems that are capable of detecting change, identifying consequences of the change and recommending corrective actions to mitigate the threats introduced by the change. The topology of an operational environment is one of the major dynamically changing aspects of the underlying system that predominantly impacts protection decisions. Topology can be defined as a representation of physical or digital elements and their structural relationship such as containment and connectivity relationships. This talk explores the challenges of engineering adaptive security and suggests an action-based approach for engineering self-adaptive systems that continue satisfying their security requirements in a steadily changing topology.
منابع مشابه
Modelling Security Relevant Context An approach towards Adaptive Security in Volatile Mobile Web Environments
Coming along with the spread of location-independent wireless networks and attractive mobile devices like “smartphones” or “pads”, activities in the Web increasingly take place in volatile mobile environments, even if sensitive information objects are involved. In this paper a approach is proposed to apply security measures to such objects in a context sensitive, flexible way. It is based on se...
متن کاملSelf-healing in payment switches with a focus on failure detection using State Ma- chine-based approaches
Composition, change and complexity have attracted ev- eryone’s attention towards Self-Adaptive systems. These systems, inspired by the human body, are capable of adapting to changes in the inner and outer environment. The main objective of this study is to achieve a more con- venient availability for e-banking services in the payment switch, using self-healing systems and focusing on the failur...
متن کاملCrime Prevention in Urban Design: towards Space Syntax Approach as a Quantitative Analytic Modeling of Qualitative Issue of Security (Based on Spatial Configuration)
متن کامل
Self-healing in payment switches with a focus on failure detection using State Ma- chine-based approaches
Composition, change and complexity have attracted ev- eryone’s attention towards Self-Adaptive systems. These systems, inspired by the human body, are capable of adapting to changes in the inner and outer environment. The main objective of this study is to achieve a more con- venient availability for e-banking services in the payment switch, using self-healing systems and focusing on the failur...
متن کاملBridging the ‘Two Cultures’ of Research and Service: Can Complexity Theory Help?; Comment on “Experience of Health Leadership in Partnering With University-Based Researchers in Canada – A Call to ‘Re-imagine’ Research”
This commentary addresses Bowen et al’s empirical study of perspectives of Canadian healthcare staff towards research and their call for multi-faceted action to improve misalignments in the system. This commentary argues that tensions and misalignments between research and service are inherent and can never be eradicated. Building on previous work by Lanham et al, I pro...
متن کامل