Coordinating Architecture-Based Self-Protecting Systems
Industry and governments are pushing for reuse and commonality in
software-reliant systems to achieve economies of scale, and better integration
between systems. However, this also provides economies of scale to
cyber-attackers, who can devise an attack and reuse it on several systems that
share common artifacts. Techniques employed to thwart these attacks, such as
moving target (MT) defense, persistently interfere with other quality
attributes, and can make it more costly to produce, and maintain these systems.
The aim of this project is to enable systems that use common architectures and
components to securely share information about their threat environment such
that the individual systems can proactively adapt their behavior and structure
in time to deny the possibility of reusing the attack, without the impact on
other quality attributes that other techniques impose. Thus, this project will
turn the advantage that reuse and commonality give to attackers into a defense
|[cheng09seams]||Cheng, Shang-Wen; Poladian, Vahe; Garlan, David; and Schmerl, Bradley. ``Improving architecture-based self-adaptation through resource prediction." In
Software Engineering for Self-Adaptive Systems, pp. 71-88. Springer, 2009.
|[delemos13seams]||De Lemos, R.; Giese, H.; M"uller, H.; Shaw, M.; Andersson, J.; Litoiu, M.; Schmerl, B. et al. ``Software engineering for self-adaptive systems: A second research roadmap." In Software Engineering for Self-Adaptive Systems II, Springer, 2013.
|[evans11mtd]||Evans, D.; Nguyen-Tuong, A.; and Knight, J. ``Effectiveness of moving target defenses." In Moving Target Defense, pp. 29-48. Springer, 2011.
|[garlan04computer]||Garlan, D.; Cheng, S-W; Huang, A-C.; Schmerl, B; and Steenkiste, P., ``Rainbow: Architecture-based self-adaptation with reusable infrastructure.",
Computer, vol.37, IEEE, 2004.
|[garlan09]||Garlan, D.; Schmerl, B.; and Cheng, S-W. "Software architecture-based self-adaptation." In Autonomic computing and networking, pp. 31--55. Springer, 2009.
|[poladian07saso]||Poladian, V.; Garlan, D.; Shaw, M.; Satyanarayanan, M.; Schmerl, B.; Sousa, J., "Leveraging Resource Prediction for Anticipatory Dynamic Configuration." In Proceedings of the International Conference on Self-Adaptive and Self-Organizing Systems (SASO), 2007.
|[schmidt12sei]||Schmidt, D., ``Towards Common Operating Platform Environments'', Software Engineering Institute, 2012.
|[yuan12seams]||Yuan, Eric; and Malek, Sam, "A taxonomy and survey of self-protecting software systems." In Proceedings of Software Engineering for Adaptive and Self-Managing Systems (SEAMS), IEEE, 2012..
|[yuan13qosa]||Yuan, E.; Malek, S.; Schmerl, B.; Garlan, D.; and Gennari, J., "Architecture-based self-protecting software systems." In Proceedings of the 9th international Conference on Quality of Software Architectures (QoSA'13). ACM, 2013.