Policykeeper: Recommending Proper Security Mechanisms Based on the Severity of Vulnerability Considering User Experience

Author

Mutian Yang ; Jingzheng Wu ; Yanjun Wu ; Zhifei Wu

Author_Institution

Inst. of Software, Beijing, China

fYear

2013

fDate

18-20 June 2013

Firstpage

227

Lastpage

228

Abstract

The current statistics of vulnerability indicates that the security mechanisms become more important to protect the security of operating system than before. The security mechanism is regarded as an effective method of defence. However it is a great challenge to balance the security assurance and the user experience. In this paper, we propose the Policy keeper, which is a method of recommending the security mechanisms based on the severity of vulnerability, referencing the Common Vulnerability Scoring System (CVSS), considering the user experience. An algorithm is designed to transform the adaptability of a security mechanism into the numeric values which are easy to calculate and mine. The prototype is implemented. The experiment results show that Policy keeper can effectively balance the strength of security mechanisms and the user experience, recommend the appropriate security mechanisms to the operating systems.

Keywords

operating systems (computers); security of data; CVSS; common vulnerability scoring system; operating systems; policy keeper; proper security mechanisms; security assurance; user experience; Algorithm design and analysis; Androids; Equations; Humanoid robots; Operating systems; Security; CVSS; Vulnerability; recommendation; security mechanism; user experience;

fLanguage

English

Publisher

ieee

Conference_Titel

Software Security and Reliability-Companion (SERE-C), 2013 IEEE 7th International Conference on

Conference_Location

Gaithersburg, MD

Print_ISBN

978-1-4799-2924-5

Type

conf

DOI

10.1109/SERE-C.2013.19

Filename

6616349