ADEPTS: Adaptive Intrusion Response Using Attack Graphs in an E-Commerce Environment

Yokohama, Japan June 28-July 01

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/DSN.2005.17

2005 International Conference on Depe ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Bingrui Foo Articles by Yu-Sung Wu Articles by Yu-Chun Mao Articles by Saurabh Bagchi Articles by Eugene Spafford

	ASCII Text	x
	Bingrui Foo, Yu-Sung Wu, Yu-Chun Mao, Saurabh Bagchi, Eugene Spafford, "ADEPTS: Adaptive Intrusion Response Using Attack Graphs in an E-Commerce Environment," Dependable Systems and Networks, International Conference on, pp. 508-517, 2005 International Conference on Dependable Systems and Networks (DSN'05), 2005.

	BibTex	x
	@article{ 10.1109/DSN.2005.17, author = {Bingrui Foo and Yu-Sung Wu and Yu-Chun Mao and Saurabh Bagchi and Eugene Spafford}, title = {ADEPTS: Adaptive Intrusion Response Using Attack Graphs in an E-Commerce Environment}, journal ={Dependable Systems and Networks, International Conference on}, volume = {0}, year = {2005}, isbn = {0-7695-2282-3}, pages = {508-517}, doi = {http://doi.ieeecomputersociety.org/10.1109/DSN.2005.17}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Dependable Systems and Networks, International Conference on TI - ADEPTS: Adaptive Intrusion Response Using Attack Graphs in an E-Commerce Environment SN - 0-7695-2282-3 SP508 EP517 A1 - Bingrui Foo, A1 - Yu-Sung Wu, A1 - Yu-Chun Mao, A1 - Saurabh Bagchi, A1 - Eugene Spafford, PY - 2005 KW - automated intrusion response KW - intrusion containment KW - distributed e-commerce systems KW - survivability KW - attack graphs VL - 0 JA - Dependable Systems and Networks, International Conference on ER -

Bingrui Foo, Purdue University

Yu-Sung Wu, Purdue University

Yu-Chun Mao, Purdue University

Saurabh Bagchi, Purdue University

Eugene Spafford, Purdue University

Distributed systems with multiple interacting services, especially e-commerce systems, are suitable targets for malicious attacks because of the potential financial impact. Compared to intrusion detection, automated response has received relatively less attention. In this paper, we present the design of automated response mechanisms in an intrusion tolerant system called ADEPTS. Our focus is on enforcing containment in the system, thus localizing the intrusion and allowing the system to provide service, albeit degraded. ADEPTS uses a graph of intrusion goals, called IGRAPH, as the underlying representation in the system. In response to alerts from an intrusion detection framework, ADEPTS executes algorithms to determine the spread of the intrusion and the appropriate responses to deploy. A feedback mechanism evaluates the success of a deployed response and uses that in guiding future choices. ADEPTS is demonstrated on a distributed e-commerce system and evaluated using a survivability metric.

Index Terms:

automated intrusion response, intrusion containment, distributed e-commerce systems, survivability, attack graphs

Citation:

Bingrui Foo, Yu-Sung Wu, Yu-Chun Mao, Saurabh Bagchi, Eugene Spafford, "ADEPTS: Adaptive Intrusion Response Using Attack Graphs in an E-Commerce Environment," dsn, pp.508-517, 2005 International Conference on Dependable Systems and Networks (DSN'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.