Threat‐oriented security framework in risk management using multiagent system. (7th June 2012)
- Record Type:
- Journal Article
- Title:
- Threat‐oriented security framework in risk management using multiagent system. (7th June 2012)
- Main Title:
- Threat‐oriented security framework in risk management using multiagent system
- Authors:
- Bedi, Punam
Gandotra, Vandana
Singhal, Archana
Narang, Himanshi
Sharma, Sumit - Other Names:
- Simons Anthony JH guestEditor.
Fraser Gordon guestEditor.
Bottaci Leonardo guestEditor. - Abstract:
- SUMMARY: Present day sophisticated and innovative attacks have resulted in exponentially increasing security problems. This paper therefore presents a three‐phased threat‐oriented security model to meet the above security challenges as a part of proactive risk management. This model is based on a spiral process for software development because it is a risk driven approach and provides an incremental method for a progressively growing system with decreasing risk. Integration of threat management during the development process in the proposed work provides necessary security cover against both unforeseen and known threats. Identification of these threats has been made possible by fusion of a threat modeling process and research honeytokens in conjunction with a statistical model in the first phase. Necessary security measures to mitigate the above identified threats have been adopted in the second phase using multiagent system planning. Risk reduction as a result of adoption of countermeasures has been evaluated in the third phase using meta‐agents in association with fuzzy logic in a multiagent environment. The proposed proactive measures of this model have been demonstrated with a case study on 'Online Banking' to show its feasibility and has been implemented using Java Agent Development Environment, Apache Tomcat Server, with MySQL Server at the backend. Copyright © 2012 John Wiley & Sons, Ltd.
- Is Part Of:
- Software, practice & experience. Volume 43:Number 9(2013)
- Journal:
- Software, practice & experience
- Issue:
- Volume 43:Number 9(2013)
- Issue Display:
- Volume 43, Issue 9 (2013)
- Year:
- 2013
- Volume:
- 43
- Issue:
- 9
- Issue Sort Value:
- 2013-0043-0009-0000
- Page Start:
- 1013
- Page End:
- 1038
- Publication Date:
- 2012-06-07
- Subjects:
- threat‐oriented security model -- research honeytokens -- statistical model -- proactive risk management -- multiagent system planning -- meta‐agents -- fuzzy logic
Computer software -- Periodicals
Computer programming -- Periodicals
Computer programs -- Periodicals
005.3 - Journal URLs:
- http://onlinelibrary.wiley.com/ ↗
- DOI:
- 10.1002/spe.2133 ↗
- Languages:
- English
- ISSNs:
- 0038-0644
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 8321.453000
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 1027.xml