• DocumentCode
    1934094
  • Title

    Research on host-level security situational awareness

  • Author

    Zhou Ti ; Wang Xiao-fei ; Feng Li ; Wang Jing

  • Author_Institution
    Sch. of Comput. Sci. & Technol., Harbin Eng. Inst., Harbin, China
  • Volume
    1
  • fYear
    2010
  • fDate
    9-11 July 2010
  • Firstpage
    575
  • Lastpage
    579
  • Abstract
    Situational assessment is significant for host-level security. Most existing approaches are generally limited to network security that is different from host-level security. In this paper, we introduce an approach to assess host security. Analyzing process and file behaviors, we propose a series of security indices, based on which we compute the value of process situation (PS) and file situation (FS). To make the results more practical, we associate the process situation with its status in operating system, and then modify the file situation by associating it with the process situation. As an output, a situation curve is drew to display recent and past security situation. The experiment results show that the model can reflect host security situation effectively and dynamically.
  • Keywords
    Internet; computer network security; ubiquitous computing; file situation; host level security; network security; process situation; situational awareness; Monitoring; Variable speed drives; assesment; file; host; process; security; situational awareness;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on
  • Conference_Location
    Chengdu
  • Print_ISBN
    978-1-4244-5537-9
  • Type

    conf

  • DOI
    10.1109/ICCSIT.2010.5563826
  • Filename
    5563826
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1934094