Visible to the public Multi-model run-time security analysis - October 2017Conflict Detection Enabled

Submitted by Jamie Presken on Mon, 10/02/2017 - 12:11pm

Public Audience
Purpose: To highlight progress. Information is generally at a higher level which is accessible to the interested public.

PI(s): David Garlan, Bradley Schmerl

1) HARD PROBLEM(S) ADDRESSED (with short descriptions)

  • Composability through multiple semantic models (here, architectural, organizational, and behavioral), which provide separation of concerns, while supporting synergistic benefits through integrated analyses.
  • Scalability to large complex distributed systems using architectural models.
  • Resilient architectures through the use of adaptive models that can be used at run-time to predict, detect and repair security attacks.
  • Predictive security metrics by adapting social network-based metrics to the problem of architecture-level anomaly detection.

2) PUBLICATIONS

Ryan Wagner, David Garlan, and Matt Frederiksen. An Advanced Persistent Threat Exemplar. Institute for Software Engineering Technical Report CMU-ISR-TR-17-100, 2017.

3) KEY HIGHLIGHTS

We completed a prototype testbed for experimenting the advanced persistent threats, that has an example enterprise system with simulated attacks on it. We demonstrated this testbed to our NSA funders and we are in the process of releasing it to them.

4) COMMUNITY ENGAGEMENTS

5) EDUCATIONAL ADVANCES

Groups: