Metric for Security Activities Assisted by Argumentative Logic

Bouyahia, Tarek; Idrees, Muhammad; Cuppens-Boulahia, Nora; Cuppens, Frédéric; Autrel, Fabien

doi:10.1007/978-3-319-17016-9_12

Cited by 5 publications

(4 citation statements)

References 8 publications

(10 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [9], this work was extended to automatically generate firewall policies from higher-level requirements; and in previous work, we [6,42] have discussed how to use argumentation to handle firewall anomalies and, more generally, to address cyber-security. [41] applied Defeasible Logic Programming (DeLP) for validation and reconfiguration of a firewall, while [14] used and argument-based logic programming engine to enforce security requirements dynamically. Similarly, [29] showed how to analyze security systems using abstract argumentation framework.…”

Section: Related Workmentioning

confidence: 99%

Firewall configuration: An application of multiagent metalevel argumentation

Applebaum

Levitt

et al. 2016

AAC

View full text Add to dashboard Cite

Abstract. Firewalls are an important tool in the assurance of network security. Packet filtering firewalls are configured by providing a set of rules that identify how to handle individual data packets that arrive at the firewall. In large firewall configurations, conflicts may arise between these rules. Argumentation provides a way of handling conflicts such that their origin is illuminated, and hence can help a system administrator understand the effects of a given configuration. To show how argumentation might help in this domain we examine the use of a system of metalevel argumentation for firewall configuration, showing how it makes conflicts and their origins clear, and showing how different instantiations of a metalevel argumentation system provide alternative ways to resolve conflicts.

show abstract

Section: Related Workmentioning

confidence: 99%

Firewall configuration: An application of multiagent metalevel argumentation

Applebaum

Levitt

et al. 2016

AAC

View full text Add to dashboard Cite

show abstract

“…Jose-Miguel Horcas [23], defined an approach called INTER-TRUST framework to maintain the correlation between the security policies that need to be enforced, the security aspects that are deployed in order to enforce those security policies approach has been integrated. This framework has been validated in pervasive systems field, however, it can also be applied to many other types of systems.…”

Section: Related Work and Motivationmentioning

confidence: 99%

An adaptive and smart security architecture for Web Service SmartWSSec Architecture

Houssain¹,

Diouri²

2016

Fifth International Conference on Advances in Computing, Control and Networking - ACCN 2016

View full text Add to dashboard Cite

-Vulnerabilities in Web based applications will always be present. Several measures were taken to extenuate the effects of this reality but with limited success. In fact, we are bombarded by new technologies to harden systems and monitor and respond to threats, like firewalls, IDS (intrusion detection system) and IPS (Intrusion Prevention System). However, the flow of attacks and threats is so important to the point that the configuration and reconfiguration of these tools becomes difficult to insure in time. In this paper we introduce "a framework for dynamic security Policy for Web services" called SmartWSSec. The main goal of our architecture is to guarantee better security for web services based on adaptive security models. It aims to identify the appropriate actions that must be taken when a zero day attack occurred resulting on a smart protection for web service in a self-adaptive manner. The proposed architecture uses a knowledge based mechanism to learn and adjust the system when new notknown before attack appears. The proposed architecture also includes an isolation faculty to protect the system when selfadaptation fails, which will notify and involve a system administrator. We have included on this paper also the design, the components, models and concepts of adaptive security architecture, and finally gives insights on a possible implementation by providing a POC applied to different use cases.

show abstract

“…The work in [17] introduces an approach for the enforcement of security requirements based on argumentative logic; the aim is to reason about activation or deactivation of different security mechanisms under certain functional and non-functional requirements. The framework is applied to an automotive on-board system.…”

Section: Related Workmentioning

confidence: 99%

“…The framework is applied to an automotive on-board system. Differently from this work, in [17] the authors take advantage of Argument-based Logic Programming (see [2,Ch. 8]), and not Abstract Argumentation (see Sec.…”

Section: Related Workmentioning

confidence: 99%

Network security supported by arguments

Martinelli

Santini

Yautsiukhin

2015

2015 13th Annual Conference on Privacy, Security and Trust (PST)

View full text Add to dashboard Cite

Argumentation has been proved as a simple yet powerful approach to manage conflicts in reasoning with the purpose to find subsets of "surviving" arguments. Our intent is to exploit such form of resolution to support the administration of security in complex systems, e.g., in case threat countermeasures are in conflict with non-functional requirements. The proposed formalisation is able to find the required security controls and explicitly provide arguments supporting this selection. Therefore, an explanation automatically comes as part of the suggested solution, facilitating human comprehension.

show abstract

Metric for Security Activities Assisted by Argumentative Logic

Cited by 5 publications

References 8 publications

Firewall configuration: An application of multiagent metalevel argumentation

Firewall configuration: An application of multiagent metalevel argumentation

An adaptive and smart security architecture for Web Service SmartWSSec Architecture

Network security supported by arguments

Contact Info

Product

Resources

About