Abstract
In most of modern enterprise systems, redundancy configuration is often considered to provide availability during the part of such systems is being patched. However, the redundancy may increase the attack surface of the system. In this paper, we model and assess the security and capacity oriented availability of multiple server redundancy designs when applying security patches to the servers. We construct (1) a graphical security model to evaluate the security under potential attacks before and after applying patches, (2) a stochastic reward net model to assess the capacity oriented availability of the system with a patch schedule. We present our approach based on case study and model-based evaluation for multiple design choices. The results show redundancy designs increase capacity oriented availability but decrease security when applying security patches. We define functions that compare values of security metrics and capacity oriented availability with the chosen upper/lower bounds to find design choices that satisfy both security and availability requirements.
Original language | English |
---|---|
Title of host publication | Proceedings - 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017 |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 53-60 |
Number of pages | 8 |
ISBN (Electronic) | 9781538622728 |
DOIs | |
Publication status | Published - 2017 Aug 30 |
Event | 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017 - Denver, United States Duration: 2017 Jun 26 → 2017 Jun 29 |
Other
Other | 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017 |
---|---|
Country/Territory | United States |
City | Denver |
Period | 17/6/26 → 17/6/29 |
Keywords
- Attack Graphs
- Availability Models
- Graphical Security Models
- Redundancy
- Security Analysis
- Security Patches
- Stochastic Reward Nets
ASJC Scopus subject areas
- Computer Networks and Communications
- Hardware and Architecture
- Safety, Risk, Reliability and Quality