Towards the assessment of distributed vulnerabilities in autonomic networks and systems

Author

Barrère, Martín ; Badonnel, Rémi ; Festor, Olivier

Author_Institution

LORIA, INRIA Nancy Grand Est, Nancy, France

fYear

2012

fDate

16-20 April 2012

Firstpage

335

Lastpage

342

Abstract

Vulnerability management constitutes a crucial activity within autonomic networks and systems. Distributed vulnerabilities must be assessed over a consolidated view of the network in order to detect vulnerable states that may simultaneously involve two or more devices. In this work, we present a novel approach for describing and assessing distributed vulnerabilities in such self-governed environments. We put forward a mathematical construction for defining distributed vulnerabilities as well as an extension of the OVAL language called DOVAL for describing them. We then define a framework for assessing distributed vulnerabilities in autonomic environments that exploits the knowledge provided by such descriptions. We finally show the feasibility of our solution by analyzing the behavior of the proposed algorithms and strategies through a comprehensive set of experiments.

Keywords

computer network management; computer network reliability; computer network security; DOVAL language; OVAL language; autonomic networks; autonomic systems; distributed vulnerability assessment; vulnerability management; vulnerable state detection; Computer crime; Maintenance engineering; Performance evaluation; Protocols; Servers; Standards;

fLanguage

English

Publisher

ieee

Conference_Titel

Network Operations and Management Symposium (NOMS), 2012 IEEE

Conference_Location

Maui, HI

ISSN

1542-1201

Print_ISBN

978-1-4673-0267-8

Electronic_ISBN

1542-1201

Type

conf

DOI

10.1109/NOMS.2012.6211916

Filename

6211916