Modeling the Symptomatic Fixes Archetype in Enterprise Computer Security

Authors:
Shalom N. Rosenfeld;Ioana Rus;Michel Cukier
Affiliations:
University of Maryland at College Park, USA;Engineering Maryland, USA;University of Maryland at College Park, USA
Venue:
COMPSAC '06 Proceedings of the 30th Annual International Computer Software and Applications Conference - Volume 01
Year:
2006

Citing 0
Cited 1

Archetypal behavior in computer security

Journal of Systems and Software

Quantified Score

Hi-index	0.00

Visualization

Abstract

To support decision-making for security-risk mitigation and the appropriate selection of security countermeasures, we propose a system dynamics model of the security aspects of an enterprise system. We developed such an executable model, incorporating the concept of archetypes. We present here one archetype for computer security, namely symptomatic fixes (or shifting the burden). Using simulation, we show one instance of how this archetype can be used for recognizing and diagnosing typical situations, as well as for fixing problems. The global effects of changes and behavioral trends are examined, and other instances of symptomatic fixes in security are described as well.