An Ontological Approach to Situational Awareness Applied to Information Security

The typical infrastructures of Ubiquitous Computing assume characteristics of flexibility regarding the connectivity in the environments. Aiming security in these scenarios, several solutions are deployed in its own syntax languages, providing events in different formats. In this sense, Situation Awareness, as a strategy capable of integrating events from different sources, becomes a requirement for the controls implementation. This work proposes an ontological approach to SA applied to the information security domain, called EXEHDA-SO. The proposal was evaluated based on a real infrastructure, showing itself capable of handling heterogeneous events from different contextual source.

[1]  Vijayalakshmi Atluri,et al.  Role-based Access Control , 1992 .

[2]  Pardeep Bhandari,et al.  Ontology based approach for perception of network security state , 2014, 2014 Recent Advances in Engineering and Computational Sciences (RAECS).

[3]  Nora Cuppens-Boulahia,et al.  An ontology-based approach to react to network attacks , 2009, Int. J. Inf. Comput. Secur..

[4]  Gregory D. Abowd,et al.  Towards a Better Understanding of Context and Context-Awareness , 1999, HUC.

[5]  Massimo Ficco,et al.  A Generic Intrusion Detection and Diagnoser System Based on Complex Event Processing , 2011, 2011 First International Conference on Data Compression, Communications and Processing.

[6]  James H. Aylor,et al.  Computer for the 21st Century , 1999, Computer.

[7]  Nora Cuppens-Boulahia,et al.  Log content extraction engine based on ontology for the purpose of a posteriori access control , 2014, Int. J. Knowl. Learn..

[8]  Luciana Andréia Fondazzi Martimiano,et al.  The Evaluation Process of a Computer Security Incident Ontology , 2006, WONTO.

[9]  Nargiza Bekmamedova,et al.  An Ontology-Driven Approach Applied to Information Security , 2010, J. Res. Pract. Inf. Technol..

[10]  Adenauer Yamin,et al.  EXEHDA-HM: A compositional approach to explore contextual information on hybrid models , 2017, Future Gener. Comput. Syst..

[11]  J. L. Lopes,et al.  An Architectural Model for Situation Awareness in Ubiquitous Computing , 2014, IEEE Latin America Transactions.

[12]  Matthias Jarke,et al.  Telos: representing knowledge about information systems , 1990, TOIS.