Security Provisioning in Pervasive Environments Using Multi-objective Optimization

Authors:
Rinku Dewri;Indrakshi Ray;Indrajit Ray;Darrell Whitley
Affiliations:
Colorado State University, Fort Collins, USA CO 80523;Colorado State University, Fort Collins, USA CO 80523;Colorado State University, Fort Collins, USA CO 80523;Colorado State University, Fort Collins, USA CO 80523
Venue:
ESORICS '08 Proceedings of the 13th European Symposium on Research in Computer Security: Computer Security
Year:
2008

Citing 8
Cited 1

Security attribute evaluation method: a cost-benefit approach

Proceedings of the 24th International Conference on Software Engineering
Providing Contextual Information to Pervasive Computing Applications

PERCOM '03 Proceedings of the First IEEE International Conference on Pervasive Computing and Communications
Modeling Context-Based Security Policies with Contextual Graphs

PERCOMW '04 Proceedings of the Second IEEE Annual Conference on Pervasive Computing and Communications Workshops
Towards a Pervasive Computing Benchmark

PERCOMW '05 Proceedings of the Third IEEE International Conference on Pervasive Computing and Communications Workshops
A Monte Carlo framework to evaluate context based security policies in pervasive mobile environments

MobiDE '07 Proceedings of the 6th ACM international workshop on Data engineering for wireless and mobile access
Context-Based Constraints in Security: Motivations and First Approach

Electronic Notes in Theoretical Computer Science (ENTCS)
Towards security and privacy for pervasive computing

ISSS'02 Proceedings of the 2002 Mext-NSF-JSPS international conference on Software security: theories and systems
A fast and elitist multiobjective genetic algorithm: NSGA-II

IEEE Transactions on Evolutionary Computation

A general method for assessment of security in complex services

ServiceWave'11 Proceedings of the 4th European conference on Towards a service-based internet

Quantified Score

Hi-index	0.00

Visualization

Abstract

Pervasive computing applications involve information flow across multiple organizations. Thus, any security breach in an application can have far-reaching consequences. However, effective security mechanisms can be quite different from those typically deployed in conventional applications since these mechanisms are constrained by various factors in a pervasive environment. In this paper, we propose a methodology to perform a cost-benefit analysis under such circumstances. Our approach is based on the formulation of a set of constrained multi-objective optimization problems to minimize the residual damage and the cost of security provisioning. We propose the use of workflow profiles to capture the contexts in which a communication channel is used in a pervasive environment. This is used to minimize the cost that the underlying business entity will have to incur in order to keep the workflow secure and running.