Policykeeper: Recommending Proper Security Mechanisms based on the Severity of Vulnerability Considering User Experience

ISCAS OpenIR

	Policykeeper: Recommending Proper Security Mechanisms based on the Severity of Vulnerability Considering User Experience
	Yang, Mutian; Wu, Jingzheng; Wu, Yanjun; Wu, Zhifei
	2013
Conference Name	7th IEEE International Conference on Software Security and Reliability (SERE)
Pages	228-229
Conference Date	JUN 18-20, 2013
Conference Place	Gaithersburg, MD
Indexed Type	CPCI
Publish Place	IEEE COMPUTER SOC
ISBN	978-0-7695-5030-5
Department	[Yang, Mutian; Wu, Jingzheng; Wu, Yanjun; Wu, Zhifei] Chinese Acad Sci, Inst Software, Beijing 100864, Peoples R China.
English Abstract	The current statistics of vulnerability indicates that the security mechanisms become more important to protect the security of operating system than before. The security mechanism is regarded as an effective method of defence. However it is a great challenge to balance the security assurance and the user experience. In this paper, we propose the Policykeeper, which is a method of recommending the security mechanisms based on the severity of vulnerability, referencing the Common Vulnerability Scoring System (CVSS), considering the user experience. An algorithm is designed to transform the adaptability of a security mechanism into the numeric values which are easy to calculate and mine. The prototype is implemented. The experiment results show that Policykeeper can effectively balance the strength of security mechanisms and the user experience, recommend the appropriate security mechanisms to the operating systems.; The current statistics of vulnerability indicates that the security mechanisms become more important to protect the security of operating system than before. The security mechanism is regarded as an effective method of defence. However it is a great challenge to balance the security assurance and the user experience. In this paper, we propose the Policykeeper, which is a method of recommending the security mechanisms based on the severity of vulnerability, referencing the Common Vulnerability Scoring System (CVSS), considering the user experience. An algorithm is designed to transform the adaptability of a security mechanism into the numeric values which are easy to calculate and mine. The prototype is implemented. The experiment results show that Policykeeper can effectively balance the strength of security mechanisms and the user experience, recommend the appropriate security mechanisms to the operating systems.
Keyword	Security Mechanism Recommendation Cvss User Experience Vulnerability
Language	英语
Content Type	会议论文
URI	http://ir.iscas.ac.cn/handle/311060/16529
Collection	中国科学院软件研究所
Recommended Citation GB/T 7714	Yang, Mutian,Wu, Jingzheng,Wu, Yanjun,et al. Policykeeper: Recommending Proper Security Mechanisms based on the Severity of Vulnerability Considering User Experience[C]. IEEE COMPUTER SOC,2013:228-229.

Files in This Item:
There are no files associated with this item.

If you have any objections to this item, please fill out the form below and the administrator will contact you as soon as possible.
Content:
Email：	*
Institution:
Verification Code:	Refresh

Any comments and suggestions are welcomed.
Title:	*
Content:
Email：	*
Verification Code:	Refresh

中国科学院软件研究所机构知识库