Visible to the public Multi-model run-time security analysis - October 2016Conflict Detection Enabled

Submitted by Jamie Presken on Thu, 09/15/2016 - 7:04am

Public Audience
Purpose: To highlight progress. Information is generally at a higher level which is accessible to the interested public.

PI(s): Jurgen Pfeffer
Co-PI(s): David Garlan, Bradley Schmerl

1) HARD PROBLEM(S) ADDRESSED (with short descriptions)

  • Composability through multiple semantic models (here, architectural, organizational, and behavioral), which provide separation of concerns, while supporting synergistic benefits through integrated analyses.
  • Scalability to large complex distributed systems using architectural models.
  • Resilient architectures through the use of adaptive models that can be used at run-time to predict, detect and repair security attacks.
  • Predictive security metrics by adapting social network-based metrics to the problem of architecture-level anomaly detection.

2) PUBLICATIONS

3) KEY HIGHLIGHTS

We have generalized our simulator for insider anomalies to generate multiple anomalies in order to better evaluate our path-based anomaly detection algorithm.

Groups: