Intrusion response cost assessment methodology

Authors:
Chris Strasburg;Natalia Stakhanova;Samik Basu;Johnny S. Wong
Affiliations:
Iowa State University;University of New Brunswick;Iowa State University;Iowa State University
Venue:
Proceedings of the 4th International Symposium on Information, Computer, and Communications Security
Year:
2009

Citing 4
Cited 2

Toward cost-sensitive modeling for intrusion detection and response

Journal of Computer Security
ADEPTS: Adaptive Intrusion Response Using Attack Graphs in an E-Commerce Environment

DSN '05 Proceedings of the 2005 International Conference on Dependable Systems and Networks
Automated adaptive intrusion containment in systems of interacting services

Computer Networks: The International Journal of Computer and Telecommunications Networking
A Cost-Sensitive Model for Preemptive Intrusion Response Systems

AINA '07 Proceedings of the 21st International Conference on Advanced Networking and Applications

Service dependencies in information systems security

MMM-ACNS'10 Proceedings of the 5th international conference on Mathematical methods, models and architectures for computer network security
A service dependency model for cost-sensitive intrusion response

ESORICS'10 Proceedings of the 15th European conference on Research in computer security

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we present a structured methodology for evaluating cost of responses based on three factors: the response operational cost associated with the daily maintenance of the response, the response goodness that measures the applicability of the selected response for a detected intrusion and the response impact on the system that refers to the possible response effect on the system functionality. The proposed approach provides a consistent basis for response evaluation across different systems while incorporating security policy and properties of the specific system environment.