Self-Adaptation Metrics for Active Cybersecurity

2013 IEEE 7th International Conference on Self-Adaptation and Self-Organizing Systems Workshops Pub Date : 2013-09-09 DOI:10.1109/SASOW.2013.31

D. Musliner, Scott E Friedman, Tom Marble, J. Rye, Michael W. Boldt, Michael J. S. Pelican

{"title":"Self-Adaptation Metrics for Active Cybersecurity","authors":"D. Musliner, Scott E Friedman, Tom Marble, J. Rye, Michael W. Boldt, Michael J. S. Pelican","doi":"10.1109/SASOW.2013.31","DOIUrl":null,"url":null,"abstract":"FUZZBUSTER is a host-based adaptive security system that automatically discovers, refines, and repairs vulnerabilities in hosted applications in order to prevent cyber attacks. FUZZBUSTER must decide when to adapt its applications, when to revoke its previous adaptations, and when to sacrifice functionality to improve security. This requires an adaptation quality metric that captures (1) an application's susceptibility to cyber attacks and (2) an application's functionality, since adapting an application affects both of these factors. FUZZBUSTER uses different types of test cases to measure security and functionality. In this paper, we describe FUZZBUSTER's adaptation metrics and we present two different policies for balancing security and functionality. We provide empirical results comparing these policies, and we also demonstrate how FUZZBUSTER can temporarily sacrifice the functionality of hosted applications to increase host security, and then restore functionality when more favorable adaptations are found.","PeriodicalId":397020,"journal":{"name":"2013 IEEE 7th International Conference on Self-Adaptation and Self-Organizing Systems Workshops","volume":"19 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-09-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 IEEE 7th International Conference on Self-Adaptation and Self-Organizing Systems Workshops","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SASOW.2013.31","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

FUZZBUSTER is a host-based adaptive security system that automatically discovers, refines, and repairs vulnerabilities in hosted applications in order to prevent cyber attacks. FUZZBUSTER must decide when to adapt its applications, when to revoke its previous adaptations, and when to sacrifice functionality to improve security. This requires an adaptation quality metric that captures (1) an application's susceptibility to cyber attacks and (2) an application's functionality, since adapting an application affects both of these factors. FUZZBUSTER uses different types of test cases to measure security and functionality. In this paper, we describe FUZZBUSTER's adaptation metrics and we present two different policies for balancing security and functionality. We provide empirical results comparing these policies, and we also demonstrate how FUZZBUSTER can temporarily sacrifice the functionality of hosted applications to increase host security, and then restore functionality when more favorable adaptations are found.

查看原文本刊更多论文

主动网络安全的自适应度量

FUZZBUSTER是一个基于主机的自适应安全系统，可以自动发现、改进和修复托管应用程序中的漏洞，以防止网络攻击。FUZZBUSTER必须决定何时调整其应用程序，何时撤销其先前的调整，以及何时牺牲功能以提高安全性。这需要一个适应质量度量来捕获(1)应用程序对网络攻击的易感性和(2)应用程序的功能，因为适应应用程序会影响这两个因素。FUZZBUSTER使用不同类型的测试用例来度量安全性和功能。在本文中，我们描述了FUZZBUSTER的适应指标，并提出了平衡安全性和功能的两种不同策略。我们提供了比较这些策略的经验结果，我们还演示了FUZZBUSTER如何暂时牺牲托管应用程序的功能来提高主机安全性，然后在找到更有利的适应性时恢复功能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2013 IEEE 7th International Conference on Self-Adaptation and Self-Organizing Systems Workshops

自引率

0.00%

发文量