Security agility in response to intrusion detection
作者: M. Petkac , L. Badger
DOI: 10.1109/ACSAC.2000.898853
关键词:
摘要: Cooperative frameworks for intrusion detection and response exemplify a key area of today's computer research: automating defenses against malicious attacks that increasingly are taking place at grander speeds scales to enhance the survivability distributed systems maintain mission critical functionality. At individual host-level, often includes security policy reconfiguration reduce risk further penetrations. However, runtime changes may cause traditional software components, designed without (dynamic) in mind, fail varying degrees, including termination processes. This paper presents agility, strategy provide components with awareness adaptability address changes, describes how agility is packaged prototype toolkit illustrates can be integrated help automate flexible host-based intrusions.
acsac.org 
uccs.edu 参考文章(18)
Daniel F. Sterne, David L. Sherman, Kenneth M. Walker, Lee Badger, A Domain and Type Enforcement UNIX Prototype. Computing Systems. ,vol. 9, pp. 47- 83 ,(1996)
M. Petkac, L. Badger, W. Morrison, Security agility for dynamic execution environments darpa information survivability conference and exposition. ,vol. 1, pp. 377- 390 ,(2000) , 10.1109/DISCEX.2000.825041
D. Schnackenberg, K. Djahandari, D. Sterne, Infrastructure for intrusion detection and response darpa information survivability conference and exposition. ,vol. 2, pp. 3- 11 ,(2000) , 10.1109/DISCEX.2000.821505
D. Hollingworth, T. Redmond, R. Rice, Security policy realization in an extensible operating system darpa information survivability conference and exposition. ,vol. 1, pp. 320- 334 ,(2000) , 10.1109/DISCEX.2000.825035
S. Bowers, L. Delcambre, D. Maier, C. Cowan, P. Wagle, D. McNamee, A.-F. Le Meur, H. Hinton, Applying adaptation spaces to support quality of service and survivability darpa information survivability conference and exposition. ,vol. 2, pp. 271- 283 ,(2000) , 10.1109/DISCEX.2000.821526
T. Bowen, D. Chee, M. Segal, R. Sekar, T. Shanbhag, P. Uppuluri, Building survivable systems: an integrated approach based on intrusion detection and damage containment darpa information survivability conference and exposition. ,vol. 2, pp. 84- 99 ,(2000) , 10.1109/DISCEX.2000.821511
D. Elliott Bell, Leonard J. La Padula, Secure Computer System: Unified Exposition and Multics Interpretation Defense Technical Information Center. ,(1976) , 10.21236/ADA023588
B. N. Bershad, S. Savage, P. Pardyak, E. G. Sirer, M. E. Fiuczynski, D. Becker, C. Chambers, S. Eggers, Extensibility safety and performance in the SPIN operating system symposium on operating systems principles. ,vol. 29, pp. 267- 283 ,(1995) , 10.1145/224056.224077
J.E. Eegleston, S. Jamin, T.P. Kelly, J.K. Mackie-Mason, W.E. Walsh, P.P. Wellman, Survivability through market based adaptivity: the MARX project darpa information survivability conference and exposition. ,vol. 2, pp. 145- 156 ,(2000) , 10.1109/DISCEX.2000.821516
U. Erlingsson, F.B. Schneider, SASI enforcement of security policies: a retrospective darpa information survivability conference and exposition. ,vol. 2, pp. 287- 295 ,(2000) , 10.1109/DISCEX.2000.821527