FREE Registration is required
Overview:
Managing the configuration of heterogeneous enterprise security mechanisms is a wholly complex task. The effectiveness of a configuration may be constrained by poor understanding and/or management of the overall security policy requirements, which may, in turn, unnecessarily expose the enterprise to known threats. This paper proposes a threat management approach, whereby knowledge about the effectiveness of mitigating countermeasures is used to guide the autonomic configuration of security mechanisms. This knowledge is modeled in terms of Semantic Threat Graphs, a variation of the traditional Threat/Attack Tree, extended in order to relate semantic information about security configuration with threats, vulnerabilities and countermeasures. An ontology-based approach to representing and reasoning over this knowledge is taken.
(Is this item miscategorized? Does it need more tags? Let us know.)
| Format: | Size: | 224 KB | |
| Date: | May 2009 | ||
| Pages: | 16 |
Top results from Security Management
» View all Security Management listings
Top results from Network Security
White Papers, Webcasts, and Resources
- Staying a step ahead of the hackers: the importance of identifying critical Web application vulnerabilities. IBMLearn to identify Web application vulnerabilities, plus how to best protect your company against today's Web application and network security threats.
- SIP Trunking is Key to Accelerating Unified Communications Deployments SprintConsidering unified communications (UC) for your business? Discover the key to simplifying deployment, maximizing value and raising adoption company-wide.
- Business Continuity and Disaster Recovery with CA Recovery Management and VMware Infrastructure CA XOsoftLearn about an integrated approach to application and server provisioning that reduces total cost and complexity, plus boosts application availability.
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- SmartPlanet
Discover innovative insight and ideas that impact the world around you -
SmartPlanet offers expert advice on innovations in healthcare, including electronic personal health records, treatment, privacy and regulation, and the green technologies that make it happen.
- Learn more >>
Featured Training Courses
- Implementing and Administering Windows 7 in the Enterprise
- CCNA Boot Camp v2.0
- VMware vSphere: Install, Configure, Manage [V4]
- Certified Ethical Hacker
- Management and Leadership Skills
- Browse all Training Courses
SmartPlanet
- Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
- More from IBM
-
- How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
- Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
- Linking Decisions and Information for Organizational Performance Read the Tom Davenport study
