| | |
Summary: Towards Autonomic Risk-aware Security
Configuration
Mohammad Salim Ahmed, Ehab Al-Shaer, Mohamed Mahmoud Taibah, Muhammad Abedin, Latifur Khan
Department of Computer Science, The University of Texas at Dallas
School of Computer Science, Telecommunications and Information Systems, DePaul University
salimahmed@utdallas.edu, ehab@cs.depaul.edu, mtaibah@cs.depaul.edu,
arshad@student.utdallas.edu, lkhan@utdallas.edu
Abstract--Security of a network depends on a number of
dynamically changing factors. These include emergence of
new vulnerabilities and threats, policy structure and network
traffic. Due to the dynamic nature of these factors, identifying
security metrics that measure objectively the quality of security
configuration pose a major challenge. Moreover, this evaluation
must be done dynamically to handle real time changes in the
threat toward the network.
In this paper, we extend our security metric framework [2]
that identifies and quantifies objectively the most significant
security risk factors, which include existing vulnerabilities, his-
torical trend of vulnerabilities of remotely accessible services,
prediction of potential vulnerabilities for any general network
|
