Systematic Security and Timeliness Tradeoffs in Real-Time Embedded Systems

Abstract: Abstract

“…A quantitative security metric generates a security strength value for each security mechanism from its parameter configurations, and hence is more accurate and can compare the security strength of any two security mechanisms. However, the difference between the values generated by existing quantitative security metrics (Lie & Satyanarayanan, 2007;Kang & Son, 2006) cannot correctly reflect the actual difference between the security strengths of corresponding security mechanisms because they only consider the key length and ignore other important factors, such as security algorithms, attacking approaches, and attackers' computing power. For example, symmetric encryption algorithms and asymmetric encryption algorithms have different requirements on the key length.…”

“…Our approach to the tradeoff is to adjust the security parameters, such as key length and encrypting percentage, which are much easier to control. The major distinction between our approach and existing approaches (Lie & Satyanarayanan, 2007;Yurcik, Woolam, Hellings, Khan, & Thuraisingham, 2007;Lu, Lu, Abdelzaher, Stankovic, & Son, 2006;Kang & Son, 2006;Son, Zimmerman, & Hansson, 2000;Spyropoulou, Levin, & Irvine, 2000;Yau, Yan, & Huang, 2007) is that our approach can achieve the best tradeoff by minimizing a tradeoff objective function developed from service performance and security metrics, instead of intuitively trying all possible combinations of security parameters and monitoring the resulting performance and security until the desirable tradeoff is reached. Hence, our approach can achieve the best tradeoff fast and does not need to change security parameters frequently.…”

An Adaptive Approach to Optimizing Tradeoff Between Service Performance and Security in Service-Based Systems

“…A quantitative security metric generates a security strength value for each security mechanism from its parameter configurations, and hence is more accurate and can compare the security strength of any two security mechanisms. However, the difference between the values generated by existing quantitative security metrics (Lie & Satyanarayanan, 2007;Kang & Son, 2006) cannot correctly reflect the actual difference between the security strengths of corresponding security mechanisms because they only consider the key length and ignore other important factors, such as security algorithms, attacking approaches, and attackers' computing power. For example, symmetric encryption algorithms and asymmetric encryption algorithms have different requirements on the key length.…”

“…Our approach to the tradeoff is to adjust the security parameters, such as key length and encrypting percentage, which are much easier to control. The major distinction between our approach and existing approaches (Lie & Satyanarayanan, 2007;Yurcik, Woolam, Hellings, Khan, & Thuraisingham, 2007;Lu, Lu, Abdelzaher, Stankovic, & Son, 2006;Kang & Son, 2006;Son, Zimmerman, & Hansson, 2000;Spyropoulou, Levin, & Irvine, 2000;Yau, Yan, & Huang, 2007) is that our approach can achieve the best tradeoff by minimizing a tradeoff objective function developed from service performance and security metrics, instead of intuitively trying all possible combinations of security parameters and monitoring the resulting performance and security until the desirable tradeoff is reached. Hence, our approach can achieve the best tradeoff fast and does not need to change security parameters frequently.…”

An Adaptive Approach to Optimizing Tradeoff Between Service Performance and Security in Service-Based Systems

QoS and security aware allocation of Directed Acyclic Graph on heterogeneous distributed real-time systems

Evaluation of performance concurrency control algorithm for secure firm real-time database systems via simulation model