Amel Bennaceur, profile picture
Uploaded byAmel Bennaceur
PPTX, PDF315 views

Requirements-Driven Mediation for Collaborative Security

The document discusses the concept of requirements-driven mediation for collaborative security in complex, software-intensive systems. It emphasizes the need for multiple components to work together to adapt to security challenges and changes in the environment, highlighting features such as mediator selection and verification of collaboration to ensure security requirements are met. The paper outlines a research agenda focused on selection, mediation, and verification of security capabilities in collaborative environments.

Embed presentation

Download to read offline
Requirements-Driven Mediation for Collaborative Security Amel Bennaceur*, Arosha Bandara*, Michael Jackson*,Wei Liu*, Lionel Montrieux*,TheinThanTun* ,YijunYu*, Bashar Nuseibeh* *The Open University, UK +Lero, Ireland SEAMS 2014 +
The Need for Collaborative Security 2
Security Challenges in Ubicomp  The boundary of the systems is uncertain  The components can change  The components are designed and implemented independently 3 Environment Component 1 Component 3 Component 5 Component 2 Component 4
Collaborative Security  Making multiple, heterogeneous, software-intensive components collaborate in order to meet security requirements  Coping with changes in  Changes in the environment  Changes in the assets under protection and their values  Discovery of new threats and vulnerabilities 4
5 Collaborative Security Adaptive Security  Reasoning about assets, threats, attacks, and vulnerabilities  Identify the security controls necessary to keep security requirements satisfied  How to enact these security controls?  Reasoning about dynamic discovery and composition  Making multiple components collaborate  How to reason about assets, threats and security controls? Collaborative Adaptation Adaptive Security meets CollaborativeAdaptation
Capabilities Collaborative Security Framework Component 1 Component 2 Component 3 Component 4 Secure Operational Environment Component 5 Security Requirements Security Controls Mediators Determine Capture Represent Reason Synthesise Deploy
Collaborative Security Framework - Example 7 Security Requirements I can see, talk, pick objects and walk I can clean and move I can phone Asset Protect my phone against theft
Collaborative Security à la Michael Jackson 8 Environment Component 1 Component 3 Component 5 Component 2 Component 4
Collaborative Security à la Michael Jackson 9 Environment Component 1 Component 3 Component 5 Component 2 Component 4
Collaborative Security à la Michael Jackson 10 Environment Component 1 Component 3 Component 5 Component 2 Component 4 Component 1 Component 2 Component 4 Secure Operational Environment Mediator Selection Mediation Verification
Selection  Which components should collaborate to satisfy security requirements?  Feature-oriented capability selection  Use features to represent components’ capabilities  Elicit the features associated with security controls  Find a composition of features of the available capabilities that:  Subsumes the features of a selected security control provided some domain properties  Respects the constraints between features  Optimises quality attributes (e.g., performance or usability) 11 Selection Mediation Verification
Mediation  How do we make components collaborate?  Behavioural capability mediation  Consider a behavioural description of capabilities  Synthesise a mediator that acts as : Translator: ensures meaningful exchange of data between components Controller: ensures the absence of errors (e.g., deadlock) in their interaction Middleware: ensures interoperability by enabling each component to receive the data it expects at the right moment and in the right format 12 Selection Mediation Verification
Verification  How to prove that the collaboration satisfies security requirements? How to verify properties such as correctness, safety, and minimality?  Additional constraints on feature composition to avoid known vulnerabilities  Use anti-goals for mediator synthesis 13 Selection Mediation Verification
A Research Agenda  Selection  How does changing and underspecified domain properties impact the selection of capabilities?  How does trust assumptions influence the selection of the capabilities?  Mediation  How can we synthesise mediators that prevent unknown attacks?  Verification  Can we build upon the security satisfaction argument to drive the selection and mediation of capabilities?  Collaborative Security Video 14
Thank you www.amel.me Adaptive Security and Privacy www.asap-project.eu

More Related Content

PPTX
Cybersecurity Audit
byEC-Council
 
PDF
Mini IT Security Assessment
byGuardEra Access Solutions, Inc.
 
PDF
Understanding the Risk Management Framework & (ISC)2 CAP Module 8: Implement ...
byDonald E. Hester
 
PPT
Network security and policies
bywardjo
 
PDF
Understanding the Risk Management Framework & (ISC)2 CAP Module 7: Select Con...
byDonald E. Hester
 
PPT
Security Policies
byphanleson
 
DOC
Resume Joe Johnston
byJoe Johnston CISA CISM
 
PPTX
Introduction to NIST’s Risk Management Framework (RMF)
byDonald E. Hester
 
Cybersecurity Audit
byEC-Council
 
Mini IT Security Assessment
byGuardEra Access Solutions, Inc.
 
Understanding the Risk Management Framework & (ISC)2 CAP Module 8: Implement ...
byDonald E. Hester
 
Network security and policies
bywardjo
 
Understanding the Risk Management Framework & (ISC)2 CAP Module 7: Select Con...
byDonald E. Hester
 
Security Policies
byphanleson
 
Resume Joe Johnston
byJoe Johnston CISA CISM
 
Introduction to NIST’s Risk Management Framework (RMF)
byDonald E. Hester
 

What's hot

ODP
Enforcing Corporate Security Policies via Computational Intelligence Techniques
byJuan J. Merelo
 
PDF
PhishingBox Overview
byPhishingBox
 
PDF
Understanding the Risk Management Framework & (ISC)2 CAP Module 3: Roles
byDonald E. Hester
 
PPT
Epic Sales Presentation
bydpsmith1968
 
PDF
Why Medical Devices Are So Vulnerable
byMedigate
 
PDF
Application Security in Times of Globalization
byAujas Networks Pvt. Ltd.
 
PPTX
Cybersecurity automation
byJaimingondaliya1
 
PPT
Development and implementation of metrics for information security risk asses...
bypero periuc
 
PPTX
Domain 6 - Security Assessment and Testing
byMaganathin Veeraragaloo
 
PPTX
HIPAA Safeguard Slides
byprojectwinner
 
PDF
Security Risk Assessment
byHealthcare Information Technologies
 
ODP
Hack2Secure Assists Organization in Secure Application Development Through BS...
byhack2s
 
PDF
How to write an IT security policy guide - Tareq Hanaysha
byHanaysha
 
PDF
13.Anton-Position-Security-Considerations-23June2015[1]
byAnton Kaska
 
PDF
SECURITY
byTony Fanelli
 
PPT
Security Management Trends 2004
byAnton Chuvakin
 
PDF
Designing NextGen Threat Identification Solutions
byArun Prabhakar
 
PDF
Guide for Applying The Risk Management Framework to Federal Information Systems
byGuillermo Remache
 
PPTX
Risk monitoring and response
byZyrellLalaguna
 
PDF
Sivasankaran_9yrs_Information_security V1
bySivasankaran Krishnan
 
Enforcing Corporate Security Policies via Computational Intelligence Techniques
byJuan J. Merelo
 
PhishingBox Overview
byPhishingBox
 
Understanding the Risk Management Framework & (ISC)2 CAP Module 3: Roles
byDonald E. Hester
 
Epic Sales Presentation
bydpsmith1968
 
Why Medical Devices Are So Vulnerable
byMedigate
 
Application Security in Times of Globalization
byAujas Networks Pvt. Ltd.
 
Cybersecurity automation
byJaimingondaliya1
 
Development and implementation of metrics for information security risk asses...
bypero periuc
 
Domain 6 - Security Assessment and Testing
byMaganathin Veeraragaloo
 
HIPAA Safeguard Slides
byprojectwinner
 
Security Risk Assessment
byHealthcare Information Technologies
 
Hack2Secure Assists Organization in Secure Application Development Through BS...
byhack2s
 
How to write an IT security policy guide - Tareq Hanaysha
byHanaysha
 
13.Anton-Position-Security-Considerations-23June2015[1]
byAnton Kaska
 
SECURITY
byTony Fanelli
 
Security Management Trends 2004
byAnton Chuvakin
 
Designing NextGen Threat Identification Solutions
byArun Prabhakar
 
Guide for Applying The Risk Management Framework to Federal Information Systems
byGuillermo Remache
 
Risk monitoring and response
byZyrellLalaguna
 
Sivasankaran_9yrs_Information_security V1
bySivasankaran Krishnan
 

Viewers also liked

PPTX
The Role of Ontologies in Emergent Middleware: Supporting Interoperability in...
byAmel Bennaceur
 
PPTX
Dynamic Synthesis of Mediators to Support Interoperability in Autonomic Systems
byAmel Bennaceur
 
PPTX
Dynamic Synthesis of Mediators in Ubiquitous Environments
byAmel Bennaceur
 
PPTX
Dynamic Synthesis of to Support Interoperability in Autonomic Systems
byAmel Bennaceur
 
PPTX
Achieving Interoperability through Semantics-based Technologies: The Instant ...
byAmel Bennaceur
 
PPTX
Machine Learning for Emergent Middleware
byAmel Bennaceur
 
PPT
Tut hemant ns2
bycrescent000
 
DOCX
Ns2programs
byMeenakshi Devi
 
PPT
Ns 2 Network Simulator An Introduction
byJaipur National University, Jaipur, Rajasthan, India
 
PPTX
Protocol implementation on NS2
byamreshrai02
 
The Role of Ontologies in Emergent Middleware: Supporting Interoperability in...
byAmel Bennaceur
 
Dynamic Synthesis of Mediators to Support Interoperability in Autonomic Systems
byAmel Bennaceur
 
Dynamic Synthesis of Mediators in Ubiquitous Environments
byAmel Bennaceur
 
Dynamic Synthesis of to Support Interoperability in Autonomic Systems
byAmel Bennaceur
 
Achieving Interoperability through Semantics-based Technologies: The Instant ...
byAmel Bennaceur
 
Machine Learning for Emergent Middleware
byAmel Bennaceur
 
Tut hemant ns2
bycrescent000
 
Ns2programs
byMeenakshi Devi
 
Ns 2 Network Simulator An Introduction
byJaipur National University, Jaipur, Rajasthan, India
 
Protocol implementation on NS2
byamreshrai02
 

Similar to Requirements-Driven Mediation for Collaborative Security

PPT
Unit 4 standards.ppt
byClashWithGROUDON
 
PDF
standards1.pdf
byKarthick Panneerselvam
 
PDF
Profile based security assurance for service
byIESS
 
PPTX
Lecture 13 Security Operations administrator.pptx
bymelusilwal47
 
PPTX
Elizabeth Lawler - Devops, security, and compliance working in unison
byDevSecCon
 
PPTX
Dncybersecurity
byAnne Starr
 
PPT
dumil kuandu intheu vantharne some times it takes the kindaung of the going i...
byThiyagaRajan583837
 
PPT
ch0001 computer systems security and principles and practices
bystephen972973
 
PPT
Cap 1 - Visao Geral Cibersegurança em Computacao
byrodolfovillaca1
 
PDF
Distributed firewalls and ids interoperability checking based on a formal app...
byIJCNCJournal
 
PPTX
Cloud computing 10 cloud security advantages and challenges
byVaibhav Khanna
 
PPT
Information system securit lecture 1y .ppt
byranjan317165
 
PPTX
abc.pptx
byBhargaviGorde1
 
PPTX
Ch01 NetSec5e.pptx
byAwais725629
 
PPTX
information security.pptx
byAwais725629
 
PPTX
Introduction to Computer Security
byKamal Acharya
 
PPTX
2 security concepts
byLimenihMuluneh1
 
PDF
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
PDF
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
DOCX
Security ConceptsDr. Y. ChuCIS3360 Security in Computing.docx
bybagotjesusa
 
Unit 4 standards.ppt
byClashWithGROUDON
 
standards1.pdf
byKarthick Panneerselvam
 
Profile based security assurance for service
byIESS
 
Lecture 13 Security Operations administrator.pptx
bymelusilwal47
 
Elizabeth Lawler - Devops, security, and compliance working in unison
byDevSecCon
 
Dncybersecurity
byAnne Starr
 
dumil kuandu intheu vantharne some times it takes the kindaung of the going i...
byThiyagaRajan583837
 
ch0001 computer systems security and principles and practices
bystephen972973
 
Cap 1 - Visao Geral Cibersegurança em Computacao
byrodolfovillaca1
 
Distributed firewalls and ids interoperability checking based on a formal app...
byIJCNCJournal
 
Cloud computing 10 cloud security advantages and challenges
byVaibhav Khanna
 
Information system securit lecture 1y .ppt
byranjan317165
 
abc.pptx
byBhargaviGorde1
 
Ch01 NetSec5e.pptx
byAwais725629
 
information security.pptx
byAwais725629
 
Introduction to Computer Security
byKamal Acharya
 
2 security concepts
byLimenihMuluneh1
 
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
The 5 Layers of Security Testing by Alan Koch
byQA or the Highway
 
Security ConceptsDr. Y. ChuCIS3360 Security in Computing.docx
bybagotjesusa
 

Recently uploaded

PDF
Form 2 Integrated Science -- Electricity.pdf
byriofitz222
 
PPT
1-2_SterilisationValidationQualification.ppt
byUrvashiPatni1
 
PDF
CosmologywithVoidsfromtheNancyGraceRomanSpaceTelescope
bySérgio Sacani
 
PPTX
the achaemenid history from Cyrus till Darius III.
bymaki maki
 
PDF
MOT , VBT , Ionic Bonding, VSPER Theory BSc 1st Sem Inorganic Chemistry Irfan...
byWorld of Wisdom
 
PPTX
UNIT 3 - Surface and interfacial tension ppt.pptx
byyashchaudhari2256
 
PDF
Cognitive Architectures: Information Compression, Meaning-Making, and Drift i...
byCognitive Drift Institute
 
PDF
BP504T PHARMACOGNOSY UNIT 02 SUMMARY PART 01
byAnubhav Gupta
 
PDF
Lecture 7 Extra oral examination power point.pdf
byAbdullahAli461415
 
PPTX
HEMOGLOBIN and Hemoglobin electrophoresis.
byaramide2202
 
PDF
Chapter-6-Fundamentals-of-Convection.pdf
bysabaam466
 
PDF
Detection of disk-jet coprecession in a tidaldisruption event
bySérgio Sacani
 
PPTX
Matrix-2025092302163983839339933993929.pptx
byStevenSantoso9
 
PDF
634987849-Class-12-Physics-Formula-Sheet.pdf
by123456789035
 
PDF
AThickVolatileAtmosphereontheUltrahotSuper-EarthTOI-561b
bySérgio Sacani
 
PPTX
Epigenetics (Protein translation, Genetic Code, Steps involved in Translation...
byRashmiMG2
 
PPTX
Physical Science SHS 24.2 Expanding Universe.pptx
byJessonSuaga1
 
PPTX
FILTERATION filter aid and filter media.pptx
byyashchaudhari2256
 
PDF
Rock Types and Formations: Igneous, Sedimentary, and Metamorphic
byarabelladiorms
 
PDF
Ch3-phys701-Maram optics for 1234566.pdf
byssuserd90459
 
Form 2 Integrated Science -- Electricity.pdf
byriofitz222
 
1-2_SterilisationValidationQualification.ppt
byUrvashiPatni1
 
CosmologywithVoidsfromtheNancyGraceRomanSpaceTelescope
bySérgio Sacani
 
the achaemenid history from Cyrus till Darius III.
bymaki maki
 
MOT , VBT , Ionic Bonding, VSPER Theory BSc 1st Sem Inorganic Chemistry Irfan...
byWorld of Wisdom
 
UNIT 3 - Surface and interfacial tension ppt.pptx
byyashchaudhari2256
 
Cognitive Architectures: Information Compression, Meaning-Making, and Drift i...
byCognitive Drift Institute
 
BP504T PHARMACOGNOSY UNIT 02 SUMMARY PART 01
byAnubhav Gupta
 
Lecture 7 Extra oral examination power point.pdf
byAbdullahAli461415
 
HEMOGLOBIN and Hemoglobin electrophoresis.
byaramide2202
 
Chapter-6-Fundamentals-of-Convection.pdf
bysabaam466
 
Detection of disk-jet coprecession in a tidaldisruption event
bySérgio Sacani
 
Matrix-2025092302163983839339933993929.pptx
byStevenSantoso9
 
634987849-Class-12-Physics-Formula-Sheet.pdf
by123456789035
 
AThickVolatileAtmosphereontheUltrahotSuper-EarthTOI-561b
bySérgio Sacani
 
Epigenetics (Protein translation, Genetic Code, Steps involved in Translation...
byRashmiMG2
 
Physical Science SHS 24.2 Expanding Universe.pptx
byJessonSuaga1
 
FILTERATION filter aid and filter media.pptx
byyashchaudhari2256
 
Rock Types and Formations: Igneous, Sedimentary, and Metamorphic
byarabelladiorms
 
Ch3-phys701-Maram optics for 1234566.pdf
byssuserd90459
 

Requirements-Driven Mediation for Collaborative Security

  • 1.
    Requirements-Driven Mediation for CollaborativeSecurity Amel Bennaceur*, Arosha Bandara*, Michael Jackson*,Wei Liu*, Lionel Montrieux*,TheinThanTun* ,YijunYu*, Bashar Nuseibeh* *The Open University, UK +Lero, Ireland SEAMS 2014 +
  • 2.
    The Need forCollaborative Security 2
  • 3.
    Security Challenges inUbicomp  The boundary of the systems is uncertain  The components can change  The components are designed and implemented independently 3 Environment Component 1 Component 3 Component 5 Component 2 Component 4
  • 4.
    Collaborative Security  Makingmultiple, heterogeneous, software-intensive components collaborate in order to meet security requirements  Coping with changes in  Changes in the environment  Changes in the assets under protection and their values  Discovery of new threats and vulnerabilities 4
  • 5.
    5 Collaborative Security Adaptive Security Reasoning about assets, threats, attacks, and vulnerabilities  Identify the security controls necessary to keep security requirements satisfied  How to enact these security controls?  Reasoning about dynamic discovery and composition  Making multiple components collaborate  How to reason about assets, threats and security controls? Collaborative Adaptation Adaptive Security meets CollaborativeAdaptation
  • 6.
    Capabilities Collaborative Security Framework Component1 Component 2 Component 3 Component 4 Secure Operational Environment Component 5 Security Requirements Security Controls Mediators Determine Capture Represent Reason Synthesise Deploy
  • 7.
    Collaborative Security Framework- Example 7 Security Requirements I can see, talk, pick objects and walk I can clean and move I can phone Asset Protect my phone against theft
  • 8.
    Collaborative Security àla Michael Jackson 8 Environment Component 1 Component 3 Component 5 Component 2 Component 4
  • 9.
    Collaborative Security àla Michael Jackson 9 Environment Component 1 Component 3 Component 5 Component 2 Component 4
  • 10.
    Collaborative Security àla Michael Jackson 10 Environment Component 1 Component 3 Component 5 Component 2 Component 4 Component 1 Component 2 Component 4 Secure Operational Environment Mediator Selection Mediation Verification
  • 11.
    Selection  Which componentsshould collaborate to satisfy security requirements?  Feature-oriented capability selection  Use features to represent components’ capabilities  Elicit the features associated with security controls  Find a composition of features of the available capabilities that:  Subsumes the features of a selected security control provided some domain properties  Respects the constraints between features  Optimises quality attributes (e.g., performance or usability) 11 Selection Mediation Verification
  • 12.
    Mediation  How dowe make components collaborate?  Behavioural capability mediation  Consider a behavioural description of capabilities  Synthesise a mediator that acts as : Translator: ensures meaningful exchange of data between components Controller: ensures the absence of errors (e.g., deadlock) in their interaction Middleware: ensures interoperability by enabling each component to receive the data it expects at the right moment and in the right format 12 Selection Mediation Verification
  • 13.
    Verification  How toprove that the collaboration satisfies security requirements? How to verify properties such as correctness, safety, and minimality?  Additional constraints on feature composition to avoid known vulnerabilities  Use anti-goals for mediator synthesis 13 Selection Mediation Verification
  • 14.
    A Research Agenda Selection  How does changing and underspecified domain properties impact the selection of capabilities?  How does trust assumptions influence the selection of the capabilities?  Mediation  How can we synthesise mediators that prevent unknown attacks?  Verification  Can we build upon the security satisfaction argument to drive the selection and mediation of capabilities?  Collaborative Security Video 14
  • 15.
    Thank you www.amel.me Adaptive Securityand Privacy www.asap-project.eu

Editor's Notes

  • #12 Add the service pt of view