A Meta-heuristically Optimized Fuzzy Approach towards Multi-metric Security Risk Assessment in Heterogeneous System of Systems

Iñaki Eguia, Javier Del Ser

Abstract

Security measurement of complex systems is a challenging task since devices deployed over the so-called System of Systems (SoS) are extremely heterogeneous and hence imply an interoperability effort in order to enable a common resilient security measurement language. Moreover, systems demand more features beyond security concept, require to preserve privacy and claim for dependable structures in order to seek a holistic and aggregated security and safety view. This paper addresses this need by capitalizing the availability of multiple security metrics through an hybrid meta-heuristic fuzzy aggregation and composition approach that takes into account the expertise compiled by the security manager, towards the generation of visual dashboards reflecting the SPD (Security, Privacy and Dependability) risk status of the system at hand.

References

  1. Yoshioka, N., Washizaki, H., Maruyama, K., 2008, A Survey on Security Metrics, Progress Informatics, N. 5, pp. 35-47.
  2. Heyman, T., Yskout, K., Scandariato, R., Joosen, W., 2007, Analysis of the Security Patterns Landscape, International Workshop on Software Engineering for Secure Systems. Washington, DC, USA, p. 3.
  3. VanHilst, M., Fernandez, E. B., 2007, Reverse Engineering to Detect Security Patterns in Code. Proceedings of the International Workshop on Software Patterns and Quality. Information Processing Society of Japan, pp. 25- 30.
  4. Fernandez, E. B., Yoshioka, N., Washizaki, H., 2007, Using Security Patterns to Build Secure Systems, Proceedings of the International Workshop on Software Patterns and Quality. Information Processing Society of Japan, pp. 47- 48.
  5. Cavoukian, A., Dixon, M., 2013, Privacy and Security by Design: An Enterprise Architecture Approach, retrieved from http://www.ipc.on.ca.
  6. Cordon, O., Gomide, F., Herrera, F., Hoffmann, F., Magdalena, L., 2004, Genetic Fuzzy Systems: New Developments, Fuzzy Sets and Systems, Vol. 141 (1), pp. 1-3.
  7. Cordon, O., Herrera, F., Gomide, F., Hoffmann, F., Magdalena, L., 2001, Ten Years of Genetic-Fuzzy Systems: A Current Framework and New Trends, Proceedings of Joint 9th IFSA World Congress and 20th NAFIPS International Conference, pp. 1241-1246, Vancouver, Canada.
  8. Geem, Z. W., Kim, J.-H., Loganathan, G. V., 2001, A New Heuristic Optimization Algorithm: Harmony Search, Simulation, Vol 76 (2), pp. 60-68 (2001)
  9. Manjarres, D., Landa-Torres, I., Gil-Lopez, S., Del Ser, J., Bilbao, M. N., Salcedo-Sanz, S., Geem Z. W., 2013, A Survey on Applications of the Harmony Search Algorithm, Engineering Applications of Artificial Intelligence, Vol. 26 (8), pp. 1818-1831.
  10. Van Leekwijck, W., Kerre, E. E., 1999, Defuzzification: Criteria and Classification, Fuzzy Sets and Systems, Vol. 108 (1999), pp. 159-178.
Download


Paper Citation


in Harvard Style

Eguia I. and Del Ser J. (2014). A Meta-heuristically Optimized Fuzzy Approach towards Multi-metric Security Risk Assessment in Heterogeneous System of Systems . In Proceedings of the 4th International Conference on Pervasive and Embedded Computing and Communication Systems - Volume 1: MeSeCCS, (PECCS 2014) ISBN 978-989-758-000-0, pages 231-236. DOI: 10.5220/0004876802310236


in Bibtex Style

@conference{meseccs14,
author={Iñaki Eguia and Javier Del Ser},
title={A Meta-heuristically Optimized Fuzzy Approach towards Multi-metric Security Risk Assessment in Heterogeneous System of Systems},
booktitle={Proceedings of the 4th International Conference on Pervasive and Embedded Computing and Communication Systems - Volume 1: MeSeCCS, (PECCS 2014)},
year={2014},
pages={231-236},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004876802310236},
isbn={978-989-758-000-0},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 4th International Conference on Pervasive and Embedded Computing and Communication Systems - Volume 1: MeSeCCS, (PECCS 2014)
TI - A Meta-heuristically Optimized Fuzzy Approach towards Multi-metric Security Risk Assessment in Heterogeneous System of Systems
SN - 978-989-758-000-0
AU - Eguia I.
AU - Del Ser J.
PY - 2014
SP - 231
EP - 236
DO - 10.5220/0004876802310236