A Self-protecting Approach for Service-oriented Mobile Applications

Martins, Ronaldo Rodrigues; Camargo, Marcos Paulo de Oliveira; Passini, William Filisbino; Campos, Gabriel  Nagassaki; Affonso, Frank José

doi:10.5220/0010448603130320

Cited by 2 publications

(8 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…3: Similar to the previous component, we can use other types of solutions that enable communication between services [45]; and (iii) Self-protecting module (see Fig. 3: we also cite in the description of this module that we used a previous work of our research group [13] based on selfprotecting. In this sense, we can use similar or complementary solutions in this module to provide protection at runtime.…”

Section: N Table Graphical Interfacementioning

confidence: 99%

“…This layer also contains two important mechanisms for any type of CPS, which are self-protecting and observability. The self-protecting mechanism acts as a protecting strategy for Self-CPS [13]. The observability mechanism aims to present to its stakeholders the current state of the system (Self-CPS) through a set of metrics, tracking information, and logs.…”

Section: Introductionmentioning

confidence: 99%

“…Regarding the adaptation features, it enables addressing service adaptation at runtime through a dynamic approach of deployment based on previous experience of our research group [12]. Concerning the features of security, it enables us to address the self-protecting of Self-CPS by means of a non-intrusive approach developed in a previous work of our research group [13]. Based on these items, we can create a favorable scenario of development for Self-CPS, since our architecture can agile the development of such systems while enabling the server side to monitor them in the background according to the interest of each system.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

RA4Self-CPS: A Reference Architecture for Self-adaptive Cyber-Physical Systems

Camargo,

Pereira,

Almeida

et al. 2024

IEEE Latin Am. Trans.

View full text Add to dashboard Cite

Cyber-Physical Systems (CPS) represent an evolution of embedded systems by the computational elements interacting with physical entities through a network. Selfadaptive Cyber-Physical Systems (Self-CPS) present specific features compared to traditional CPS because this type of system can deal with changes at runtime. In parallel, Reference Architectures (RA) enable reusable artifacts that aggregate the knowledge of software architectures in specific domains. RAs have facilitated the development, standardization, and system evolution in different domains. Despite their relevance, reference architectures that could support the more systematic development of Self-CPS, covering issues like self-protecting and observability, are not found yet. Based on this scenario, the main contribution of this paper is to present an RA for Self-CPS named RA4Self-CPS. The goal of this RA is to support the Self-CPS development that requires self-protecting, observability, and adaptation at runtime. To show the viability of our RA, we conducted a case study that revealed a good perspective to contribute to the Self-CPS area.

show abstract

Section: N Table Graphical Interfacementioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

RA4Self-CPS: A Reference Architecture for Self-adaptive Cyber-Physical Systems

Camargo,

Pereira,

Almeida

et al. 2024

IEEE Latin Am. Trans.

View full text Add to dashboard Cite

show abstract

“…This involves both the security of the managing and the managed system in addition to their interactions. While the security of a managed system has been studied in multiple domains [1,67,89,122,166,171,178,278], to the best of our knowledge, there has been no research that analyzes the security of the managing system or the adaptation mechanisms associated with the adaptation process. Security analysis of the adaptation process is critical, since self-adaptive systems are additionally vulnerable to classes of attacks that exploit the adapting or evolving nature of a system.…”

Section: Discussionmentioning

confidence: 99%

“…The measurement layer employs security metrics to derive key risk indicators which are used to decide whether a security control needs to be deployed to the system (the adaptation layer) via a rule-based engine that evaluates security policies (the decision making layer). Martins et al [178] propose a self-protecting approach for service-oriented mobile applications. They employ machine learning techniques to detect and classify threats and vulnerabilities and recommend mitigations.…”

Section: Self-protecting Systemsmentioning

confidence: 99%

Design and Analysis of Self-protection: Adaptive Security for Software-Intensive Systems

Skandylas¹

View full text Add to dashboard Cite

Today's software landscape features a high degree of complexity, frequent changes in requirements and stakeholder goals, and uncertainty.Uncertainty and high complexity imply a threat landscape where cybersecurity attacks are a common occurrence while their consequences are often severe. Self-adaptive systems have been proposed to mitigate the complexity and frequent changes by adapting at run-time to deal with situations not known at design time.Self-adaptive systems that aim to identify, analyse and mitigate threats autonomously are called self-protecting systems.This thesis contributes approaches towards developing systems with self-protection capabilities under two perspectives. Under the first perspective, we enhance the security of component-based systems and equip them with self-protection capabilities that reduce the exposedattack surface or provide efficient defenses against identified attacks. We target systems where information about the system components and the adaptationdecisions is available, and control over the adaptation is possible. We employ runtime threat modeling and analysis using quantitative risk analysis and probabilistic verification to rank adaptations to be applied in the system in terms of their security levels. We then introduce modular and incremental verification approaches to tackle the scalability issues of probabilistic verification to be able to analyze larger-scale software systems.To protect against cyberattacks that cannot be mitigated by reducing the exposed attack surface, we propose an approach to analyze the security of different software architectures incorporating countermeasures to decide on the most suitable ones to evolve to. Under the second perspective, we study open decentralized systems where we have limited information about and limited control over the system entities. We employ decentralized information flow control mechanisms to enforce security by controlling the interactions among the system elements.We extend decentralized information flow control by incorporating trust and adding adaptationcapabilities that allow the system to identify security threats and self-organize to maximize trust between the system entities.

show abstract

A Self-protecting Approach for Service-oriented Mobile Applications

Cited by 2 publications

References 0 publications

RA4Self-CPS: A Reference Architecture for Self-adaptive Cyber-Physical Systems

RA4Self-CPS: A Reference Architecture for Self-adaptive Cyber-Physical Systems

Design and Analysis of Self-protection: Adaptive Security for Software-Intensive Systems

Contact Info

Product

Resources

About