Security modeling and analysis of a self-cleansing intrusion tolerance technique

Mir, Iman El; Kim, Dong-Seong; Haqiq, Abdelkrim

doi:10.1109/isias.2015.7492754

Cited by 6 publications

(2 citation statements)

References 14 publications

(12 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A large range of approaches for enumerating network vulnerabilities based on attack graphs such as (Mulval [26], CySeMol [31]), and for filtering and detecting malicious activities for example by IDS alert correlation to locate the attack traces in the generated alerts (as in SnIPS [33] and CRIM [9]) are receiving immense attention from the research community for many years until now. Multiple mathematical approaches and analytical models have been performed to analyze the problems and risks related to security including machine learning [3], data mining [2] and stochastic modeling [17], [14], [13], [15], [16]. The game-theoretic approaches have attracted enormous research attention so as to quantify security.…”

Section: Related Workmentioning

confidence: 99%

A Game Theoretic approach based virtual machine migration for cloud environment security

Elmir¹,

mehdi²,

Mohamed³

et al. 2022

Int. j. commun. netw. inf. secur.

Self Cite

View full text Add to dashboard Cite

In cloud computing environment, static configurations can provide for the attackers an environment too easy for exploitation and discovering the network vulnerabilities in order to compromise the network and launching intrusions; while dynamic reconfiguration seeks to develop a virtual machine (VM) migration over the cloud by applying unpredictability of network configuration’s change, and thus improving the system security. In this work a novel approach that performs proactive and reactive measures to ensure a high availability and to minimize the attack surface using VM migration is proposed. This interaction between attack and defense systems was formulated as game model. As result, we have calculated the Nash equilibrium and the utilities for the both attacker and defender, evaluate the parameters which can maximize the defender’s utility when the VM migration was planned and identify the potential attack paths. Therefore, the effectiveness of the game model was validated by some numerical results that determine optimal migration strategies in order to ensure the security of the system.

show abstract

Section: Related Workmentioning

confidence: 99%

A Game Theoretic approach based virtual machine migration for cloud environment security

Elmir¹,

mehdi²,

Mohamed³

et al. 2022

Int. j. commun. netw. inf. secur.

Self Cite

View full text Add to dashboard Cite

show abstract

“…Security failures can be mitigated by several approaches, such as layered security (defense in depth) [12], intrusion tolerance [16], and selfprotection [13]. The layered security [12] addresses multiple facets of a security on a network.…”

Section: Related Workmentioning

confidence: 99%

Security Requirements for Tolerating Security Failures

Shin

Pathirage²

2017

International Conferences on Software Engineering and Knowledge Engineering

View full text Add to dashboard Cite

Abstract-This paper describes security failure-tolerant requirements, which tolerate the failures of security services that protect applications from security attacks. A security service, such as authentication, confidentiality or integrity security service, can be always broken down as advanced attack skills are coined. There is no security service that is forever secure. This paper describes an approach to developing the security failure-tolerant use case that specifies the security requirements for tolerating the breaches of security services. A security failure-tolerant use case is modeled along with application use case and security use case, and specified with application use case description. Threats to applications are identified and modeled to develop security failure-tolerant requirements. Online shopping system is used for illustrating security failure-tolerant requirements.

show abstract

Performance Analysis and Security Based on Intrusion Detection and Prevention Systems in Cloud Data Centers

Mir

Haqiq

Kim

2017

Advances in Intelligent Systems and Computing

View full text Add to dashboard Cite

Security modeling and analysis of a self-cleansing intrusion tolerance technique

Cited by 6 publications

References 14 publications

A Game Theoretic approach based virtual machine migration for cloud environment security

A Game Theoretic approach based virtual machine migration for cloud environment security

Security Requirements for Tolerating Security Failures

Performance Analysis and Security Based on Intrusion Detection and Prevention Systems in Cloud Data Centers

Contact Info

Product

Resources

About