Evaluating Security and Availability of Multiple Redundancy Designs when Applying Security Patches

Mengmeng Ge, Huy Kang Kim, Dong Seong Kim

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

In most of modern enterprise systems, redundancy configuration is often considered to provide availability during the part of such systems is being patched. However, the redundancy may increase the attack surface of the system. In this paper, we model and assess the security and capacity oriented availability of multiple server redundancy designs when applying security patches to the servers. We construct (1) a graphical security model to evaluate the security under potential attacks before and after applying patches, (2) a stochastic reward net model to assess the capacity oriented availability of the system with a patch schedule. We present our approach based on case study and model-based evaluation for multiple design choices. The results show redundancy designs increase capacity oriented availability but decrease security when applying security patches. We define functions that compare values of security metrics and capacity oriented availability with the chosen upper/lower bounds to find design choices that satisfy both security and availability requirements.

Original languageEnglish
Title of host publicationProceedings - 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages53-60
Number of pages8
ISBN (Electronic)9781538622728
DOIs
Publication statusPublished - 2017 Aug 30
Event47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017 - Denver, United States
Duration: 2017 Jun 262017 Jun 29

Other

Other47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017
CountryUnited States
CityDenver
Period17/6/2617/6/29

Keywords

  • Attack Graphs
  • Availability Models
  • Graphical Security Models
  • Redundancy
  • Security Analysis
  • Security Patches
  • Stochastic Reward Nets

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'Evaluating Security and Availability of Multiple Redundancy Designs when Applying Security Patches'. Together they form a unique fingerprint.

  • Cite this

    Ge, M., Kim, H. K., & Kim, D. S. (2017). Evaluating Security and Availability of Multiple Redundancy Designs when Applying Security Patches. In Proceedings - 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2017 (pp. 53-60). [8023698] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DSN-W.2017.37