Abstract
The autonomic paradigm has been introduced in order to cope with the growing complexity of management. In that context, autonomic networks and systems are in charge of their own configuration. However, the changes that are operated by these environments may generate vulnerable configurations. In the meantime, a strong standardization effort has been done for specifying the description of configuration vulnerabilities. We propose in this paper an approach for integrating these descriptions into the management plane of autonomic systems in order to ensure safe configurations. We describe the underlying architecture and a set of preliminary results based on the Cfengine configuration tool.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Cfengine, http://www.cfengine.org/ (last visited on February 14, 2011)
OVAL Language, http://oval.mitre.org/ (last visited on February 14, 2011)
Achi, H., Hellany, A., Nagrial, M.: Network Security Approach For Digital Forensics Analysis. In: Proceedings of the International Conference on Computer Engineering and Systems (CCES 2008), pp. 263–267 (November 2008)
Autonomic Computing. An Architectural Blueprint For Autonomic Computing. IBM White Paper (2006)
Kephart, J.O., Chess, D.M.: The Vision of Autonomic Computing. Computer 36(1), 41–50 (2003)
Khan, M.J., Awais, M.M., Shamail, S.: Enabling Self-Configuration in Autonomic Systems Using Case-Based Reasoning with Improved Efficiency. In: Proceedings of the 4th International Conference on Autonomic and Autonomous Systems (ICAS 2008), pp. 112–117 (March 2008)
Wang, T., Wei, T., Gu, G., Zou, W.: TaintScope: A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection. In: Proceedings of the IEEE Symposium on Security and Privacy, pp. 497–512 (May 2010)
Wickboldt, J.A., Bianchin, L.A., Lunardi, R.C.: Improving IT Change Management Processes with Automated Risk Assessment. In: Proceedings of the IEEE International Workshop on Distributed Systems: Operations and Management (DSOM 2009), pp. 71–84 (2009)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 IFIP International Federation for Information Processing
About this paper
Cite this paper
Barrère, M., Badonnel, R., Festor, O. (2011). Towards Vulnerability Prevention in Autonomic Networks and Systems. In: Chrisment, I., Couch, A., Badonnel, R., Waldburger, M. (eds) Managing the Dynamics of Networks and Services. AIMS 2011. Lecture Notes in Computer Science, vol 6734. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-21484-4_9
Download citation
DOI: https://doi.org/10.1007/978-3-642-21484-4_9
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-21483-7
Online ISBN: 978-3-642-21484-4
eBook Packages: Computer ScienceComputer Science (R0)