This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
2011 Sixth International Conference on IT Security Incident Management and IT Forensics
Towards a Rapid-Alert System for Security Incidents
Stuttgart, Germany
May 10-May 12
ISBN: 978-0-7695-4403-8
Predicting security incidents and forecasting risk are two essential duties when designing an enterprise security system. Based on a quantitative risk assessment technique arising from an an attacker-defender model, we propose a Bayesian learning strategy to continuously update the quality of protection and forecast the decision-theoretic risk. Evidence for or against the security of particular system components can be obtained from various sources, including security patches, software updates, scientific or industrial research result notifications retrieved through RSS feeds. Using appropriate stochastic distribution models, we obtain closed-form expressions (formulas) for the times when to expect the next security incident and when a re-consideration of a security system or component becomes advisable.
Index Terms:
Decision-theory, Risk-management, Risk forecasting, Bayesian learning, System security
Citation:
Stefan Rass, "Towards a Rapid-Alert System for Security Incidents," imf, pp.122-136, 2011 Sixth International Conference on IT Security Incident Management and IT Forensics, 2011
Usage of this product signifies your acceptance of the Terms of Use.