Evaluating Security and Availability of Multiple Redundancy Designs when Applying Security Patches

Mengmeng Ge, Huy Kang Kim, Dong Seong Kim

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    6 Citations (Scopus)

    Abstract

    In most of modern enterprise systems, redundancy configuration is often considered to provide availability during the part of such systems is being patched. However, the redundancy may increase the attack surface of the system. In this paper, we model and assess the security and capacity oriented availability of multiple server redundancy designs when applying security patches to the servers. We construct (1) a graphical security model to evaluate the security under potential attacks before and after applying patches, (2) a stochastic reward net model to assess the capacity oriented availability of the system with a patch schedule. We present our approach based on case study and model-based evaluation for multiple design choices. The results show redundancy designs increase capacity oriented availability but decrease security when applying security patches. We define functions that compare values of security metrics and capacity oriented availability with the chosen upper/lower bounds to find design choices that satisfy both security and availability requirements.

    Original languageEnglish
    Title of host publicationProceedings - 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017
    PublisherInstitute of Electrical and Electronics Engineers Inc.
    Pages53-60
    Number of pages8
    ISBN (Electronic)9781538622728
    DOIs
    Publication statusPublished - 2017 Aug 30
    Event47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017 - Denver, United States
    Duration: 2017 Jun 262017 Jun 29

    Other

    Other47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017
    Country/TerritoryUnited States
    CityDenver
    Period17/6/2617/6/29

    Keywords

    • Attack Graphs
    • Availability Models
    • Graphical Security Models
    • Redundancy
    • Security Analysis
    • Security Patches
    • Stochastic Reward Nets

    ASJC Scopus subject areas

    • Computer Networks and Communications
    • Hardware and Architecture
    • Safety, Risk, Reliability and Quality

    Fingerprint

    Dive into the research topics of 'Evaluating Security and Availability of Multiple Redundancy Designs when Applying Security Patches'. Together they form a unique fingerprint.

    Cite this