Title :
Learning Autonomic Security Reconfiguration Policies
Author :
Tapiador, Juan E. ; Clark, John A.
Author_Institution :
Dept. of Comput. Sci., Univ. of York, York, UK
fDate :
June 29 2010-July 1 2010
Abstract :
We explore the idea of applying machine learning techniques to automatically infer risk-adaptive policies to reconfigure a network security architecture when the context in which it operates changes. To illustrate our approach, we consider the case of a MANET where nodes carrying sensitive services (e.g., web servers, key repositories, etc.) should consider relocating themselves into a different node to guarantee proper functioning. We use simulation to derive properties from a candidate policy, and then apply Genetic Programming and Multi-Objective Optimisation techniques to search for optimal candidates. The inferred policies take the form of risk-aware service relocation algorithms that autonomously dictate when and how to relocate services with the aim of keeping risk to a minimum. Since security policies often have implications in dimensions other than security, we force the learning process to consider also the consequences (performance, usability) of a given policy.
Keywords :
ad hoc networks; computer network security; genetic algorithms; learning (artificial intelligence); risk management; MANET; autonomic security reconfiguration policies; genetic programming; machine learning techniques; multiobjective optimisation techniques; network security architecture; risk aware service relocation algorithms; Access control; Computational modeling; Current measurement; Government; Mobile ad hoc networks; Servers; Genetic Programming; Mobile Ad Hoc Networks; Risk Management; Security Policy Inference;
Conference_Titel :
Computer and Information Technology (CIT), 2010 IEEE 10th International Conference on
Conference_Location :
Bradford
Print_ISBN :
978-1-4244-7547-6
DOI :
10.1109/CIT.2010.168
