risk analysis and deployment security issues in a multi
play

Risk analysis and Deployment Security Issues in a Multi-agent System - PowerPoint PPT Presentation

Nov 10, 2022 •335 likes •959 views

Risk analysis and Deployment Security Issues in a Multi-agent System Ambra Molesini & Marco Prandini Elena Nardini & Enrico Denti { ambra.molesini, marco.prandini, elena.nardini, enrico.denti } @unibo.it Alma Mater Studiorum Universit`

  1. Risk analysis and Deployment Security Issues in a Multi-agent System Ambra Molesini & Marco Prandini Elena Nardini & Enrico Denti { ambra.molesini, marco.prandini, elena.nardini, enrico.denti } @unibo.it Alma Mater Studiorum —Universit` a di Bologna ICAART 2010, Valencia, Spain, 22nd January 2010 Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 1 / 23

  2. Case Study 1 Risk Analysis 2 Security Deployment Issues 3 Conclusions and Future Works 4 Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 2 / 23

  3. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  4. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  5. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation ▶ assessing risks Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  6. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation ▶ assessing risks ▶ discussing deployment strategies that could interfere with the achievement of the application goal Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  7. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation ▶ assessing risks ▶ discussing deployment strategies that could interfere with the achievement of the application goal In order to do this we Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  8. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation ▶ assessing risks ▶ discussing deployment strategies that could interfere with the achievement of the application goal In order to do this we ▶ present our case study Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  9. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation ▶ assessing risks ▶ discussing deployment strategies that could interfere with the achievement of the application goal In order to do this we ▶ present our case study ▶ present the risk analysis phase Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  10. The objective of this paper Our work is aimed at performing a security analysis of a selected case study – an access control system [Molesini et al., 2009] – for ▶ identifying threats coming both from ★ the system domain ★ its MAS-based implementation ▶ assessing risks ▶ discussing deployment strategies that could interfere with the achievement of the application goal In order to do this we ▶ present our case study ▶ present the risk analysis phase ▶ discuss about security deployment issues Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 3 / 23

  11. Background MASs should be conceived also as providers of security functionalities Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  12. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  13. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  14. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes ▶ capturing the concepts needed for achieving a robust design at the most appropriate abstraction levels Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  15. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes ▶ capturing the concepts needed for achieving a robust design at the most appropriate abstraction levels However, a MAS needs a complex underlying infrastructure, whose intrinsic security is fundamental for the correct Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  16. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes ▶ capturing the concepts needed for achieving a robust design at the most appropriate abstraction levels However, a MAS needs a complex underlying infrastructure, whose intrinsic security is fundamental for the correct ▶ behaviour of agents Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  17. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes ▶ capturing the concepts needed for achieving a robust design at the most appropriate abstraction levels However, a MAS needs a complex underlying infrastructure, whose intrinsic security is fundamental for the correct ▶ behaviour of agents ▶ implementation of the policy to be enforced Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  18. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes ▶ capturing the concepts needed for achieving a robust design at the most appropriate abstraction levels However, a MAS needs a complex underlying infrastructure, whose intrinsic security is fundamental for the correct ▶ behaviour of agents ▶ implementation of the policy to be enforced Various solutions exist for the design of MAS-supporting platforms and for exploiting a MAS as a security provider [Yamazaki et al., 2004, Bordini et al., 2006, JADE, 2005] . . . Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  19. Background MASs should be conceived also as providers of security functionalities The flexibility of the agent paradigm proves very valuable in ▶ modelling the different aspects of security schemes ▶ capturing the concepts needed for achieving a robust design at the most appropriate abstraction levels However, a MAS needs a complex underlying infrastructure, whose intrinsic security is fundamental for the correct ▶ behaviour of agents ▶ implementation of the policy to be enforced Various solutions exist for the design of MAS-supporting platforms and for exploiting a MAS as a security provider [Yamazaki et al., 2004, Bordini et al., 2006, JADE, 2005] . . . . . . but the field of their security assessment is largely unexplored Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 4 / 23

  20. Our case study Reference domain: access control system Case study: management of the access control to a university building [Molesini et al., 2009] System’s scenario: Faculty building a) classroom department library administration b) dep-library office dep-administration office c) office d) Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 5 / 23

  21. The developing methodology The case study was analysed and designed [Molesini et al., 2009] according to SODA SODA is an agent-oriented methodology for the analysis and design of agent-based systems ▶ . . . adopts agents and artifacts (A&A meta-model) as the main building blocks for MAS development ★ agents model individual and social activities ★ artifacts are adopted for the environment engineering since they glue agents together, as well as MAS and the environment Molesini (Univ. Bologna) Risk analysis ICAART 2010, 22/01/2010 6 / 23

Recommend

TWIC - Navigating Deployment Challenges DIMACS Workshop on Port Security/Safety, Risk Analysis and

TWIC - Navigating Deployment Challenges DIMACS Workshop on Port Security/Safety, Risk Analysis and

TWIC - Navigating Deployment Challenges DIMACS Workshop on Port Security/Safety, Risk Analysis and Modeling 17 November, 2008 Proprietary & Confidential Agenda Framing Statistics Challenge Spotlight Enrollment

530 views • 10 slides
Security Planning and Risk Analysis CS461/ECE422 Computer Security I Fall 2009 Slide #1

Security Planning and Risk Analysis CS461/ECE422 Computer Security I Fall 2009 Slide #1

Security Planning and Risk Analysis CS461/ECE422 Computer Security I Fall 2009 Slide #1 Overview Elements of Risk Analysis Quantitative vs Qualitative Analysis One Risk Analysis framework Slide #2 Reading Material Chapter

793 views • 32 slides
Security Planning and Risk Analysis CS461/ECE422 Computer Security I Fall 2010 Slide #1

Security Planning and Risk Analysis CS461/ECE422 Computer Security I Fall 2010 Slide #1

Security Planning and Risk Analysis CS461/ECE422 Computer Security I Fall 2010 Slide #1 Overview Elements of Risk Analysis Quantitative vs Qualitative Analysis One Risk Analysis framework Slide #2 Reading Material Chapter

706 views • 32 slides
Staff Deployment Analysis Staff Deployment Analysis is a tool to enable school

Staff Deployment Analysis Staff Deployment Analysis is a tool to enable school

ICFP Integrated Curriculum Financial Planning Staff Deployment Analysis Staff Deployment Analysis is a tool to enable school leaders/trustees to ensure value for money and efficient use of the funding we currently receive Staff Deployment

517 views • 20 slides
USING A RISK-BASED APPROACH TO ALIGN SECURITY ARCHITECTURE WITH THE BUSINESS FOR DLP DEPLOYMENT

USING A RISK-BASED APPROACH TO ALIGN SECURITY ARCHITECTURE WITH THE BUSINESS FOR DLP DEPLOYMENT

USING A RISK-BASED APPROACH TO ALIGN SECURITY ARCHITECTURE WITH THE BUSINESS FOR DLP DEPLOYMENT Jeff Bardin VP , CS O ITS olut ions j eff.bardin@ it solut ions-llc.com Insert presenter logo here on slide master AGENDA What is

531 views • 35 slides
A Multi-Perspective Analysis of Carrier-Grade NAT Deployment @RIPE 73, Madrid, 2016. Philipp

A Multi-Perspective Analysis of Carrier-Grade NAT Deployment @RIPE 73, Madrid, 2016. Philipp

A Multi-Perspective Analysis of Carrier-Grade NAT Deployment @RIPE 73, Madrid, 2016. Philipp Richter, Florian Wohlfart, Narseo Vallina-Rodriguez, Mark Allman, Randy Bush, Anja Feldmann, Christian Kreibich, Nicholas Weaver, and Vern Paxson. to

775 views • 42 slides
A Multi-perspective Analysis of Carrier-Grade NAT Deployment Magdalena Prbstl May 18, 2017

A Multi-perspective Analysis of Carrier-Grade NAT Deployment Magdalena Prbstl May 18, 2017

A Multi-perspective Analysis of Carrier-Grade NAT Deployment Magdalena Prbstl May 18, 2017 Background Operators Perspectives on CGN Measurement Methodology Global CGN Presence CGN Behaviour Implications, Conclusion and Takeaway Background

289 views • 14 slides
Improvements in Transportation Security Analysis from a Complex Risk Mitigation Framework for the

Improvements in Transportation Security Analysis from a Complex Risk Mitigation Framework for the

Improvements in Transportation Security Analysis from a Complex Risk Mitigation Framework for the Security of International Spent Nuclear Fuel Transportation Adam D. Williams Global Security Research & Analysis Sandia National Laboratories

505 views • 13 slides
GA10 People and Security Lecture 3: Biometrics Applying risk analysis Goals of this lecture

GA10 People and Security Lecture 3: Biometrics Applying risk analysis Goals of this lecture

GA10 People and Security Lecture 3: Biometrics Applying risk analysis Goals of this lecture Brief introduction to biometrics Context: ICAO,US Visit and the ID cards programme Issues with current equipment Performance

654 views • 52 slides
Singapore Standard for Multi-Tiered Cloud Security - SS 584:2013 1. To provide an overview of

Singapore Standard for Multi-Tiered Cloud Security - SS 584:2013 1. To provide an overview of

Agenda Singapore Standard for Multi-Tiered Cloud Security - SS 584:2013 1. To provide an overview of Multi-Tier Cloud Security (MTCS SS584:2013) standard 2. To detail the deployment considerations and related initiatives Wong Onn Chee, Cloud

352 views • 6 slides
Secure Border Gateway Protocol (S-BGP): Real World Performance & Deployment Issues Stephen

Secure Border Gateway Protocol (S-BGP): Real World Performance & Deployment Issues Stephen

Secure Border Gateway Protocol (S-BGP): Real World Performance & Deployment Issues Stephen Kent, Charles Lynn, Joanne Mikkelson, and Karen Seo BBN Technologies A Part of Outline BGP Model BGP security concerns & requirements

528 views • 20 slides
Adversarial Risk Analysis Models for Urban Security Resource Allocation Urban Security Resource

Adversarial Risk Analysis Models for Urban Security Resource Allocation Urban Security Resource

Adversarial Risk Analysis Models for Urban Security Resource Allocation Urban Security Resource Allocation David Ros Insua, Royal Academy Cesar Gil, U. Rey Juan Carlos Jess Ros, IBM Research YH COST Smart Cities Wshop Paris, September

507 views • 22 slides
Risk Assessment Reduce the workers and Biosafety is an inexact science, and

Risk Assessment Reduce the workers and Biosafety is an inexact science, and

Risk Analysis Biosafety Risk assessment, Risk Risk analysis encom passes Management & risk risk assessm ent, risk communication m anagem ent, and risk com m unication. Ephy Khaemba International Livestock Research Institute

506 views • 11 slides
ISO New Englands Operational Fuel-Security Analysis Shows Growing Fuel-Security Risk

ISO New Englands Operational Fuel-Security Analysis Shows Growing Fuel-Security Risk

M A R C H 1 6 , 2 0 1 8 | B O S T O N , M A ISO New Englands Operational Fuel-Security Analysis Shows Growing Fuel-Security Risk Restructuring Roundtable Gordon van Welie P R E S I D E N T & C E O ISO-NE PUBLIC KEY MESSAGES

288 views • 12 slides
TECHNOLOGICAL CHALLENGES FOR FIELD DEPLOYMENT AND UPGRADE OF MULTI-TERABIT/S UPGRADE OF

TECHNOLOGICAL CHALLENGES FOR FIELD DEPLOYMENT AND UPGRADE OF MULTI-TERABIT/S UPGRADE OF

conference & convention enabling the next generation of networks & services TECHNOLOGICAL CHALLENGES FOR FIELD DEPLOYMENT AND UPGRADE OF MULTI-TERABIT/S UPGRADE OF MULTI-TERABIT/S SUBMARINE SYSTEMS Gabriel Charlet Alcatel-Lucent Bell

164 views • 15 slides
Context : Deployment of secure and reliable energy management devices Issues : Large

Context : Deployment of secure and reliable energy management devices Issues : Large

ANOMALY DETECTION USING HARDWARE PERFORMANCE COUNTERS ON A LARGE SCALE IOT DEPLOYMENT Context : Deployment of secure and reliable energy management devices Issues : Large scale deployment Resources constrained IoT devices

413 views • 3 slides
Application of multi-frequency cardiometabolic risk bioimpedance analysis to the Reduction

Application of multi-frequency cardiometabolic risk bioimpedance analysis to the Reduction

Beyond BMI and Waist Circumference in obesity management and Application of multi-frequency cardiometabolic risk bioimpedance analysis to the Reduction in fat mass management of patients with Maintenance of lean body mass (fat-free

613 views • 9 slides
Cyber Physical Systems Security ( SECANT Security - RO) With the financial support of the

Cyber Physical Systems Security ( SECANT Security - RO) With the financial support of the

Unified Unified Risk Risk Assessment Assessment URANIUM URANIUM Negotiation via Negotiation via Interoperability Interoperability Using Using Multi-sensor data Multi-sensor data Cyber Physical Systems Security ( SECANT Security - RO)

197 views • 16 slides
Drug benefit-risk assessment using multi-criteria decision analysis Douwe Postmus 1 , Gert van

Drug benefit-risk assessment using multi-criteria decision analysis Douwe Postmus 1 , Gert van

Introduction Problem structuring Consequences Trade-offs Uncertainty Summary Drug benefit-risk assessment using multi-criteria decision analysis Douwe Postmus 1 , Gert van Valkenhoef, Hans Hillege Department of Epidemiology, University

504 views • 36 slides
Micro Seismic Hazard Analysis Workshop/Training on Earthquake Vulnerability and Multi-Hazard Risk

Micro Seismic Hazard Analysis Workshop/Training on Earthquake Vulnerability and Multi-Hazard Risk

Micro Seismic Hazard Analysis Workshop/Training on Earthquake Vulnerability and Multi-Hazard Risk Assessment: Geospatial Tools for Rehabilitation and Reconstruction Efforts Siefko Slob INTERNATIONAL INSTITUTE FOR GEO-INFORMATION SCIENCE AND

1.1k views • 66 slides
Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the Cloud? How the Cloud is delivered: Iaas, PaaS and SaaS Cloud security challenges and risk Current Cloud security report Cloud security technology

302 views • 27 slides
Afghanistan Security Forces Fund (ASFF): Overview and Recurring Issues g LTC Jose A. Cora

Afghanistan Security Forces Fund (ASFF): Overview and Recurring Issues g LTC Jose A. Cora

JAG Pre-Deployment Training (JPT): Afghanistan Security Forces Fund (ASFF) Afghanistan Security Forces Fund (ASFF): Overview and Recurring Issues g LTC Jose A. Cora Acting Chief, Contract and Fiscal Actions Branch (KFAB) ( ) JAG

1.67k views • 26 slides
ONLINE RISKS, SECURITY ISSUES AND DIGITAL COMPETENCE: AN INTERGENERATIONAL ANALYSIS OF RUSSIAN

ONLINE RISKS, SECURITY ISSUES AND DIGITAL COMPETENCE: AN INTERGENERATIONAL ANALYSIS OF RUSSIAN

ONLINE RISKS, SECURITY ISSUES AND DIGITAL COMPETENCE: AN INTERGENERATIONAL ANALYSIS OF RUSSIAN ADOLESCENTS AND ADULTS Galina Soldatova Corresponding Member of the Russian Academy of Sciences, Psy.D., Professor, Lomonosov Moscow State

799 views • 37 slides
Risk-based Security BARRY KOUNS CEO AT RISK BASED SECURITY Session Overview Warm-up Quiz

Risk-based Security BARRY KOUNS CEO AT RISK BASED SECURITY Session Overview Warm-up Quiz

Risk Assessment the Heart of Risk-based Security BARRY KOUNS CEO AT RISK BASED SECURITY Session Overview Warm-up Quiz Introduction to our security challenge What is Risk-based Security? The language of risk some

787 views • 53 slides

More recommend