Title :
STARTS: A decision support architecture for dynamic security configuration management
Author :
Singh, A. ; Lilja, D.
Author_Institution :
Dept. of Comput. Sci., Univ. of Minnesota, Minneapolis, MN, USA
Abstract :
Configuration of security controls is either static or event driven (such as an incident or in response to recommendations from a risk assessment exercise) in most organizations. These approaches do not adequately protect the organization because threats to information are ever changing and dynamic in nature. STARTS is a decision support architecture for dynamic security management. It is the first security architecture that proposes the use of statistical design of experiments technique for dynamic security configuration adjustment. This is accomplished through ongoing statistical analysis using control sensors. These sensors collaborate with each other on an ongoing basis via a Plackett-Burman matrix and generate recommendations on the adjustments that need to take place in the security configuration to respond to changing threats. In this paper, we describe the STARTS architecture as well as the results from its preliminary implementation.
Keywords :
configuration management; decision support systems; design of experiments; matrix algebra; security of data; Plackett-Burman matrix; STARTS architecture; decision support architecture; dynamic security configuration management; risk assessment; statistical design of experiment technique; Computer architecture; Computer science; Computer security; Costs; Engineering management; Event detection; Information security; Protection; Protocols; Risk management; Perl; Plackett-Burman; Risk management; controls; security;
Conference_Titel :
Industrial Engineering and Engineering Management, 2009. IEEM 2009. IEEE International Conference on
Conference_Location :
Hong Kong
Print_ISBN :
978-1-4244-4869-2
Electronic_ISBN :
978-1-4244-4870-8
DOI :
10.1109/IEEM.2009.5373106
