A Survey on System Attack Models

Ajay, V. P.

doi:10.9756/bijrce.1132

Cited by 3 publications

(1 citation statement)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This kind of attack would be possible due to vulnerabilities V1-V4 and V6-V7. By exploiting these vulnerabilities, the attackers can follow a deceptive attack model (Ajay, 2012), where deception can be defined as an interaction between two parties, a deceiver and a target, in which the deceiver successfully causes the target to accept as true a specific incorrect version of reality, with the intent of causing the target to act in a way that benefits the deceiver (Teixeira et al, 2012). A specific class of deception attack is the false-data injection attack (Teixeira et al, 2012), where the attacker would inject false data into the INTER-TRUST framework.…”

Section: The Attack Modelmentioning

confidence: 99%

An approach for deploying and monitoring dynamic security policies

Horcas

Pinto

Fuentes

et al. 2016

Computers & Security

View full text Add to dashboard Cite

Security policies are enforced through the deployment of certain security functionalities within the applications. When the security policies dynamically change, the associated security functionalities currently deployed within the applications must be adapted at runtime in order to enforce the new security policies. INTER-TRUST is a framework for the specification, negotiation, deployment and dynamic adaptation of interoperable security policies, in the context of pervasive systems where devices are constantly exchanging critical information through the network. The dynamic adaptation of the security policies at runtime is addressed using Aspect-Oriented Programming (AOP) that allows enforcing security requirements by dynamically weaving security aspects into the applications. However, a mechanism to guarantee the correct adaptation of the functionality that enforces the changing security policies is needed. In this paper, we present an approach based on the combination of monitoring and detection techniques in order to maintain the correlation between the security policies and the associated functionality deployed using AOP, allowing the INTER-TRUST framework to automatically react when needed.

show abstract

Section: The Attack Modelmentioning

confidence: 99%