Institutions | About Us | Help | Gaeilge
rian logo


Mark
Go Back
Requirements and specifications for adaptive security: concepts and analysis
Tun, Thein Than; Yang, Mu; Bandara, Arosha K.; Yu, Y.; Nhlabatsi, A.; Khan, N.; Khan, K.M.; Bashara, Bashar
In an adaptive security-critical system, security mechanisms change according to the type of threat posed by the environment. Specifying the behavior of these systems is diicult because conditions of the environment are diicult to describe until the system has been deployed and used for a length of time. This paper deines the problem of adaptation in security-critical systems, and outlines the RELAIS approach for expressing requirements and specifying the behavior in a way that helps identify the need for adaptation, and the appropriate adaptation behavior at runtime. The paper introduces the notion of adaptation via input approximation and proposes statistical machine learning techniques for realizing it. The approach is illustrated with a running example and is applied to a realistic security example from a cloud-based ile-sharing application. Bayesian classiication and logistic regression methods are used to implement adaptive speciications and these methods ofer diferent levels of adaptive security and usability in the ile-sharing application.
Keyword(s): sequrity requirements; self-adaptation
Publication Date:
2018
Type: Conference item
Peer-Reviewed: Yes
Language(s): English
Institution: University of Limerick
Funder(s): Science Foundation Ireland
Citation(s): SEAMS '18 Proceedings of the 13th International Conference on Software Engineering for Adaptive and Self-Managing Systems;pp. 161-171
http://dx.doi.org/10.1145/3194133.3194155
13/RC/2094
QNRF NPRP 5-079-1-018
291652
Publisher(s): Association for Computing Machinery
First Indexed: 2018-07-28 06:26:51 Last Updated: 2018-12-21 06:27:31