Vulnerability Risk Assessment of Security Systems and Proposal for System SLA

2011 Fiscal Year Final Research Report

• Project/Area Number: 21650011
• Research Category: Grant-in-Aid for Challenging Exploratory Research
• Allocation Type: Single-year Grants
• Research Field: Computer system/Network
• Research Institution: University of Tsukuba
• Principal Investigator: OKAMOTO Eiji 筑波大学, システム情報系, 教授 (60242567)
• Co-Investigator(Kenkyū-buntansha): KANAOKA Akira 筑波大学, システム情報系, 助教 (00455924)
• Project Period (FY): 2009 – 2011
• Keywords: ネットワークセキュリティ / リスク / 脆弱性

Research Abstract

A lot of security systems are introduced in recent highly advanced and sophisticated networks, but pre-active methods are used usually. However attacks are inevitable and it is not possible to stop all of them, so proactive methods are important. This is the idea of RISK. We presented a quantities approach for the effective and efficient assessment of risks related to information security, construct robust network systems using this assessment, and proposed a forecasting method of information security related incidents. SLA (Security Level Agreement) is possible using these methods.

Research Products

• [Journal Article] Chaos-cryptography based privacy preservation technique for video surveillance, Special Issue on Privacy-aware multimedia surveillance systems (2012)
  • Author(s): k. Md. Mizanur Rahman, M. Anwar Hossain, Hussein Mouftah, Abdulmotaleb El Saddik and Eiji Okamoto
  • Journal Title: ultmedia Systems, Springer Volume: Vol.18, No.2 Pages: 145-155
  • URL: http://dx.doi.org/10.1007/s00530-011-0246-9
  • Peer Reviewed
• [Journal Article] 検索クエリ中のワイルドカードを秘匿する隠れベクトル暗号システム (2011)
  • Author(s): 秋山浩岐, 満保雅浩, 岡本栄司
  • Journal Title: 情報処理学会論文誌 Volume: Vol.52, No.9 Pages: 2662-2673
  • Peer Reviewed
• [Journal Article] 確率的パケットマーキングにおける最適マーキング確率の推定 (2011)
  • Author(s): 岡田雅之, 金岡晃, 勝野恭治, 岡本栄司
  • Journal Title: 情報処理学会論文誌 Volume: Vol.52, No.9 Pages: 2718-2728
  • Peer Reviewed
• [Journal Article] ネットワークシステムにおける脆弱性影響の測定手法とシステム実装 (2011)
  • Author(s): 原田敏樹, 金岡晃, 加藤雅彦, 岡本栄司
  • Journal Title: 情報処理学会論文誌 Volume: Vol.52, No.9 Pages: 2613-2623
  • Peer Reviewed
• [Journal Article] An approach to perform quantitative information security risk assessment in IT landscape (2010)
  • Author(s): A. Romanov, H. Tsubaki and E. Okamoto
  • Journal Title: 情報処理学会論文誌 Volume: 51巻9号 Pages: 1726-1749
  • Peer Reviewed
• [Journal Article] 安全なネットワークシステム設計のためのマルチレイヤネットワークモデルの提案と応用 (2010)
  • Author(s): 金岡晃, 原田敏樹, 加藤雅彦, 勝野恭治, 岡本栄司
  • Journal Title: 情報処理学会論文誌 Volume: Vol.51, No.9 Pages: 1726-1735
  • Peer Reviewed
• [Journal Article] Amount of spam messages as a case study (2010)
  • Author(s): A. Romanov and E. Okamoto ; Forecasting of information security related incidents
  • Journal Title: 電子情報通信学会論文誌 Volume: E93-B巻6号 Pages: 1411-1421
  • Peer Reviewed
• [Journal Article] 我々をとりまく情報社会と暗号危殆化のかかわり (2010)
  • Author(s): 猪俣敦夫, 岡本栄司
  • Journal Title: 情報処理学会50周年記念「情報処理技術の未来地図」 Volume: 51巻、5号 Pages: 528
  • Peer Reviewed
• [Journal Article] メーリングリストを考慮したマスメール型ワームの感染数理モデル (2010)
  • Author(s): 金岡晃, 勝野恭治, 岡本栄司
  • Journal Title: 情報処理学会論文誌 Volume: Vol.51, No.3 Pages: 682-690
  • Peer Reviewed
• [Presentation] 確率的パケットマーキング手法の実用化検討 (2011)
  • Author(s): 金岡晃, 岡田雅之, 岡本栄司
  • Organizer: CSS2011
  • Place of Presentation: 朱鷺メッセ(新潟県)
  • Year and Date: 20111019-21
• [Presentation] マルチレイヤのネットワークトポロジ抽出手法、第10回情報科学技術フォーラム(FIT2011) (2011)
  • Author(s): 日暮一太, 金岡晃, 加藤雅彦, 岡本栄司
  • Organizer: 電子情報通信学会 & 情報処理学会
  • Place of Presentation: 函館大学(北海道)
  • Year and Date: 20110907-09
• [Presentation] 2-bit AS Number Based IP Traceback (2011)
  • Author(s): Masayuki Okada, Akira Kanaoka, Yasuharu Katsuno, Eiji Okamoto
  • Organizer: Fifth International Workshop on Advances in Information Security (WAIS-2011) Seoul, Korea
  • Year and Date: 20110630-02
• [Presentation] BlueSnarf revisited : OBEX FTP services directory traversal (2011)
  • Author(s): A. Moreno, E. Okamoto
  • Organizer: Workshop on Wireless Cooperative Network Security (WCNS 2011)
  • Place of Presentation: Valencia, Spain
  • Year and Date: 20110509-13
• [Presentation] Design and analysis of "Flexible" k-out-of-n Signatures (2010)
  • Author(s): Raylin Tso, Xun Yi, Tadahiko Ito, Takeshi Okamoto and Eiji Okamoto
  • Organizer: ATC2010 (The 7th International Conference on Autonomic and Trusted Computing)
  • Place of Presentation: Xi!~an, China
  • Year and Date: 20101026-29
• [Presentation] An Approach for designing of enterprise IT landscapes to perform quantitative information security risk assessment (2010)
  • Author(s): Anton Romanov and Eiji Okamoto
  • Organizer: ICETE/SECRYPT2009
  • Place of Presentation: Milan, Italy
  • Year and Date: 20100707-10
• [Presentation] Key agreement for large-scale dynamic peer group (2010)
  • Author(s): Xun Yi and Eiji Okamoto
  • Organizer: ADPC2010 (Advances in Distributed and Parallel Computing)
  • Place of Presentation: Mandarin Orchard Hotel, Singapore
  • Year and Date: 20100000
• [Presentation] Web感染型マルウェアリスク評価を可能とするネットワークトポロジ分析 (2010)
  • Author(s): 金岡晃, 加藤雅彦, 岡本栄司
  • Organizer: 電子情報通信学会ICSS研究会
  • Place of Presentation: 広島市立大学(広島県)
  • Year and Date: 2010-11-05
• [Presentation] A quantitative approach to access information security related risks (2009)
  • Author(s): Anton Romanov and Eiji Okamoto
  • Organizer: 4th International Conference on Risks and Security of Internet and Systems (CRISIS2009)
  • Place of Presentation: Toulouse, France
  • Year and Date: 20091019-22
• [Presentation] A Framework for Building and Managing Secured ERP Landscape (2009)
  • Author(s): Anton Romanov and Eiji Okamoto
  • Organizer: WORLDCOMP'09/SAM'09
  • Place of Presentation: LasVegas, Nevada, USA
  • Year and Date: 20090713-16
• [Presentation] Extraction of Parameters from Well Managed Networked System in Access Control (2009)
  • Author(s): Akira Kanaoka, Masahito Kato, Nobukatsu Todo and Eiji Okamoto
  • Organizer: The Fourth International Conference on Internet Monitoring and Protection (ICIMP 2009)
  • Place of Presentation: Venice/Mestre, Italy
  • Year and Date: 20090524-28