DCAFE: A Distributed Cyber Security Automation Framework for Experiments

Abstract

Cyber security has quickly become an overwhelming challenge for governments, businesses, private organizations, and individuals. In an increasingly connected world, the trend is for resources to be accessible from anywhere at any time. Greater access to resources implies more targets and potentially a larger surface area for attacks, which makes securing systems more difficult. Automated and semi-automated solutions are needed to keep up with the deluge of modern threats, but designing such systems requires a distributed architecture to support development and testing. Several such architectures exist, but most only focus on providing a platform for running cyber security experiments as opposed to automating experiment processes. In response to this need, we have built a distributed framework based on software agents which can manage system roles, automate data collection, analyze results, and run new experiments without human intervention. The contribution of this work is the creation of a model for experiment automation and control in a distributed system environment, and this paper provides a detailed description of our framework based on that model.

Meeting Name

38th Annual IEEE Computer Software and Applications Conference Workshops, COMPSACW 2014 (2014: Jul. 27-29, Vasteras, Sweden)

Department(s)

Computer Science

Research Center/Lab(s)

Center for High Performance Computing Research

Sponsor(s)

Missouri University of Science and Technology. Natural Computation Laboratory

Keywords and Phrases

Automation; Cyber Security; Distributed System; Experiment Framework; Software Agent

International Standard Book Number (ISBN)

978-1479935789

Document Type

Article - Conference proceedings

Document Version

Citation

File Type

text

Language(s)

English

Rights

© 2014 Institute of Electrical and Electronics Engineers (IEEE), All rights reserved.

Publication Date

01 Jan 2014

Share

 
COinS