Modeling and Verification of IPSec and VPN Security Policies
ICNP '05 Proceedings of the 13TH IEEE International Conference on Network Protocols
Vulnerability analysis For evaluating quality of protection of security policies
Proceedings of the 2nd ACM workshop on Quality of protection
On Dynamic Optimization of Packet Matching in High-Speed Firewalls
IEEE Journal on Selected Areas in Communications
Aggregating vulnerability metrics in enterprise networks using attack graphs
Journal of Computer Security
Hi-index | 0.00 |
In order to create secure and dependable systems and information intelligence, it is a major challenge to determine the security level of the network. This security level depends on a number of dynamically changing factors including emerging of new vulnerabilities and threats, policy updates and network traffic. An effective means to address this is to identify security metrics that measure the quality of security configuration objectively and dynamically. In this extended abstract, we propose a comprehensive security metric framework called Risk based prOactive seCurity cOnfiguration maNAger (ROCONA) that identifies and quantifies objectively the most significant security risk factors, which include existing and future vulnerabilities based on historical trends, security configuration immunity to attack occurrence and propagation, and traffic trends that reflect the insider and outsider user behavior.