Security agility in response to intrusion detection

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by M. Petkac Articles by L. Badger

16th Annual Computer Security Applications Conference (ACSAC'00)

New Orleans, Louisiana

December 11-December 15

ISBN: 0-7695-0859-6

	ASCII Text	x
	M. Petkac, L. Badger, "Security agility in response to intrusion detection," Computer Security Applications Conference, Annual, pp. 11, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000.

	BibTex	x
	@article{ 10.1109/ACSAC.2000.898853, author = {M. Petkac and L. Badger}, title = {Security agility in response to intrusion detection}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2000}, issn = {1063-9527}, pages = {11}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898853}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Security agility in response to intrusion detection SN - 1063-9527 SP EP A1 - M. Petkac, A1 - L. Badger, PY - 2000 KW - security of data; distributed processing; security agility; intrusion detection; cooperative frameworks; malicious attacks; distributed systems; mission critical functionality; security policy reconfiguration; software components; runtime security policy change; prototype toolkit; flexible host-based response VL - 0 JA - Computer Security Applications Conference, Annual ER -

M. Petkac, NAI Labs., USA

L. Badger, NAI Labs., USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898853

Cooperative frameworks for intrusion detection and response exemplify a key area of today's computer research: automating defenses against malicious attacks that increasingly are taking place at grander speeds and scales to enhance the survivability of distributed systems and maintain mission critical functionality. At the individual host-level, intrusion response often includes security policy reconfiguration to reduce the risk of further penetrations. However, runtime policy changes may cause traditional software components, designed without (dynamic) security in mind, to fail in varying degrees, including termination of critical processes. This paper presents security agility, a strategy to provide software components with the security awareness and adaptability to address runtime security policy changes, describes how security agility is packaged in a prototype toolkit and illustrates how the toolkit can be integrated with intrusion detection and response frameworks to help automate flexible host-based response to intrusions.

Index Terms:

security of data; distributed processing; security agility; intrusion detection; cooperative frameworks; malicious attacks; distributed systems; mission critical functionality; security policy reconfiguration; software components; runtime security policy change; prototype toolkit; flexible host-based response

Citation:

M. Petkac, L. Badger, "Security agility in response to intrusion detection," acsac, pp.11, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.