Detecting and Eliminating the Cascade Vulnerability Problem from Multilevel Security Networks Using Soft Constraints
Abstract
The security of a network configuration is based, not just on the security of its individual components and their direct interconnections, but it is also based on the potential for systems to inter-operate indirectly across network routes. Such inter-operation has been shown to provide the potential for cascading paths that violate security, in a circuitous manner, across a network. In this paper we show how constraint programming provides a natural approach to expressing the necessary constraints to ensure multilevel security across a network configuration. In particular, soft constraints are used to detect and eliminate the cascading network paths that violate security. Taking this approach results in practical advancements over existing solutions to this problem. In particular, constraint satisfaction highlights the set of all cascading paths, upon which we can compute in polynomial time an optimal reconfiguration of the network and ensure security.
Cite
Text
Bistarelli et al. "Detecting and Eliminating the Cascade Vulnerability Problem from Multilevel Security Networks Using Soft Constraints." AAAI Conference on Artificial Intelligence, 2004.Markdown
[Bistarelli et al. "Detecting and Eliminating the Cascade Vulnerability Problem from Multilevel Security Networks Using Soft Constraints." AAAI Conference on Artificial Intelligence, 2004.](https://mlanthology.org/aaai/2004/bistarelli2004aaai-detecting/)BibTeX
@inproceedings{bistarelli2004aaai-detecting,
title = {{Detecting and Eliminating the Cascade Vulnerability Problem from Multilevel Security Networks Using Soft Constraints}},
author = {Bistarelli, Stefano and Foley, Simon N. and O'Sullivan, Barry},
booktitle = {AAAI Conference on Artificial Intelligence},
year = {2004},
pages = {808-813},
url = {https://mlanthology.org/aaai/2004/bistarelli2004aaai-detecting/}
}