Deakin University
Browse

File(s) under permanent embargo

Multi-objective security hardening optimisation for dynamic networks

conference contribution
posted on 2019-01-01, 00:00 authored by Simon Yusuf Enoch, Jin B Hong, Mengmeng Ge, Khaled M Khan, Dong Seong Kim
Hardening the dynamic networks is a very challenging task due to their complexity and dynamicity. Moreover, there may be multi-objectives to satisfy, while containing the solutions within the constraints (e.g., fixed budget, availability of countermeasures, performance degradation, non-patchable vulnerabilities, etc). In this paper, we propose a systematic approach to optimise the selection of the security hardening options for the dynamic networks given multiple constraints and objectives. To do so, we evaluate potential attack scenarios for a given time period, and then use a multi-objective optimisation based on Non-dominated Sorting Genetic Algorithm to find the optimal set of security hardening options. We measure the effectiveness of the options using various security metrics, which is demonstrated through experimental analysis. The results show that our approach can be applied to select the optimal set of security hardening options to be deployed for the dynamic networks given multiple objectives and constraints.

History

Pagination

1-7

Location

Shanghai, China

Start date

2019-05-20

End date

2019-05-24

ISBN-13

978-1-5386-8088-9

Language

eng

Publication classification

E1 Full written paper - refereed

Copyright notice

2019, IEEE

Editor/Contributor(s)

[Unknown]

Title of proceedings

ICC 2019 : Proceedings of the 2019 IEEE International Conference on Communications

Event

IEEE Communications Society. Conference (2019 : Shanghai, China)

Publisher

Institute of Electrical and Electronics Engineers

Place of publication

Piscataway, N.J.

Series

IEEE Communications Society Conference

Usage metrics

    Research Publications

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC