运行时基于本体的安全适应

2010 Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems Pub Date : 2010-09-27 DOI:10.1109/SASO.2010.11

Antti Evesti, E. Ovaska

{"title":"运行时基于本体的安全适应","authors":"Antti Evesti, E. Ovaska","doi":"10.1109/SASO.2010.11","DOIUrl":null,"url":null,"abstract":"This paper describes how software is able to autonomously adapt its security mechanisms based on knowledge from security ontology. Security adaptation is required because a software’s environment changes during run-time. Thus, all security requirements cannot be defined beforehand. To achieve security adaptation, we have combined a security ontology that defines security mechanisms, security objectives, and high level security measurements. The run-time security adaptation utilises this security ontology to adapt security mechanisms or their parameters to fulfil security requirements for each environment and usage situation. The novelty of this approach comes from the utilisation of ontologies and security measurements, which makes adaptation flexible. We validate our security adaptation with a case study in a smart space environment. The case study proves that security adaptation is able to work autonomously without other user actions.","PeriodicalId":370044,"journal":{"name":"2010 Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems","volume":"15 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-09-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"27","resultStr":"{\"title\":\"Ontology-Based Security Adaptation at Run-Time\",\"authors\":\"Antti Evesti, E. Ovaska\",\"doi\":\"10.1109/SASO.2010.11\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper describes how software is able to autonomously adapt its security mechanisms based on knowledge from security ontology. Security adaptation is required because a software’s environment changes during run-time. Thus, all security requirements cannot be defined beforehand. To achieve security adaptation, we have combined a security ontology that defines security mechanisms, security objectives, and high level security measurements. The run-time security adaptation utilises this security ontology to adapt security mechanisms or their parameters to fulfil security requirements for each environment and usage situation. The novelty of this approach comes from the utilisation of ontologies and security measurements, which makes adaptation flexible. We validate our security adaptation with a case study in a smart space environment. The case study proves that security adaptation is able to work autonomously without other user actions.\",\"PeriodicalId\":370044,\"journal\":{\"name\":\"2010 Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems\",\"volume\":\"15 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-09-27\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"27\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SASO.2010.11\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SASO.2010.11","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 27

摘要

本文描述了软件如何在安全本体知识的基础上自主调整其安全机制。由于软件的环境在运行期间会发生变化，因此需要进行安全性调整。因此，不能预先定义所有的安全需求。为了实现安全适应，我们结合了一个安全本体，该本体定义了安全机制、安全目标和高级安全度量。运行时安全自适应利用此安全本体来调整安全机制或其参数，以满足每个环境和使用情况的安全需求。这种方法的新颖之处在于对本体和安全度量的利用，这使得适应变得灵活。我们通过智能空间环境中的案例研究验证了我们的安全适应性。案例研究证明，安全自适应能够在没有其他用户操作的情况下自主工作。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Ontology-Based Security Adaptation at Run-Time

This paper describes how software is able to autonomously adapt its security mechanisms based on knowledge from security ontology. Security adaptation is required because a software’s environment changes during run-time. Thus, all security requirements cannot be defined beforehand. To achieve security adaptation, we have combined a security ontology that defines security mechanisms, security objectives, and high level security measurements. The run-time security adaptation utilises this security ontology to adapt security mechanisms or their parameters to fulfil security requirements for each environment and usage situation. The novelty of this approach comes from the utilisation of ontologies and security measurements, which makes adaptation flexible. We validate our security adaptation with a case study in a smart space environment. The case study proves that security adaptation is able to work autonomously without other user actions.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2010 Fourth IEEE International Conference on Self-Adaptive and Self-Organizing Systems

自引率

0.00%

发文量

期刊最新文献

Optimal Decentralized Formation of k-Member Partnerships Planning with Utility and State Trajectory Constraints in Self-Healing Automotive Systems Swarming Pattern Analysis to Identify IED Threat Quantitative Emergence -- A Refined Approach Based on Divergence Measures VCAE: A Virtualization and Consolidation Analysis Engine for Large Scale Data Centers