TC: Small: Collaborative Research: An Argumentation-based Framework for Security Management
TC:小型:协作研究:基于论证的安全管理框架
基本信息
- 批准号:1118077
- 负责人:
- 金额:$ 24.9万
- 依托单位:
- 依托单位国家:美国
- 项目类别:Standard Grant
- 财政年份:2011
- 资助国家:美国
- 起止时间:2011-08-01 至 2015-07-31
- 项目状态:已结题
- 来源:
- 关键词:
项目摘要
Computer users are increasingly faced with decisions that impact their personal privacy and the security of the systems they manage. The range of users confronting these challenges has broadened from the early days of computing to include everyone from home users to administrators of large enterprise networks. Privacy policies are frequently obscure, and security settings are typically complex. Missing from the options presented to a user is a decision support mechanism that can assist her in making informed choices. Being presented with the consequences of decisions she is asked to make, among other information, is a necessary component that is currently lacking.This work introduces formal argumentation as a framework for helping users make informed decisions about the security of their computer systems and the privacy of their electronically stored information. Argumentation, a mature theoretical discipline, provides a mechanism for reaching substantiated conclusions when faced with incomplete and inconsistent information. It provides the basis for presenting arguments to a user for or against a position, along with well-founded methods for assessing the outcome of interactions among the arguments. An elegant theory of argumentation has been developed based on meta rules characterizing relationships between arguments. Rules for argument construction and evaluation have been devised for specific domains such as medical diagnosis. This project investigates argumentation as the basis for helping users make informed security- and privacy-related decisions about their computer systems. Three specific aims are addressed:1) Implementation of an inference engine that reasons using argumentation,2) Facilitate security management through an argumentation inference engine, a rule base specialized for security management, and sensors providing security alerts all enhanced with an interactive front-end.3) Reason about the consistency and completeness of domain knowledge, as it evolves.To understand the kinds of domain-specific inference rules required, diverse security applications are studied, such as determining if an attack imperils a particular system, finding the root cause of an attack, deciding on appropriate actions to take in the presence of an uncertain diagnosis of an attack, and deciding on privacy settings. Emerging from this project will be a prototype towards the practice of usable security. The team is working with organizations responsible for the security administration of large enterprise networks and will make the prototype tools available to these organizations. The team is working with everyday users from a cross-section of community members. Curricular modules that cover the intersection of argumentation and security are being developed and shared.
计算机用户越来越多地面临影响他们的个人隐私和他们管理的系统安全的决定。面对这些挑战的用户范围已经从计算的早期扩大到包括从家庭用户到大型企业网络管理员的每个人。隐私策略往往晦涩难懂,安全设置通常也很复杂。呈现给用户的选项中缺少一个决策支持机制,该机制可以帮助用户做出明智的选择。在其他信息中,向她展示被要求做出的决定的后果是一个目前缺乏的必要组成部分。这项工作引入了正式论证作为一个框架,帮助用户就其计算机系统的安全性和其电子存储信息的隐私做出明智的决定。论证是一门成熟的理论学科,它提供了一种在面对不完整和不一致的信息时得出确凿结论的机制。它为向用户提供支持或反对某一立场的论点提供了基础,以及评估论点之间相互作用的结果的有充分依据的方法。一种优雅的论证理论已经发展出来,它基于描述论点之间关系的元规则。为医疗诊断等特定领域设计了论点构建和评估的规则。这个项目调查论证,以此为基础帮助用户对他们的计算机系统做出与安全和隐私相关的明智决定。三个具体目标是:1)实现使用论证进行推理的推理机;2)通过论证推理机、专门用于安全管理的规则库和提供安全警报的传感器来促进安全管理,所有这些都通过交互前端得到增强。3)对于领域知识的一致性和完备性的原因,随着领域知识的演变而增强。为了了解所需的领域特定推理规则的种类,研究了不同的安全应用,例如确定攻击是否危及特定系统,找到攻击的根本原因,在存在攻击的不确定诊断的情况下决定要采取的适当行动,以及决定隐私设置。从这个项目中浮现出来的将是一个走向可用安全实践的原型。该团队正在与负责大型企业网络安全管理的组织合作,并将向这些组织提供原型工具。该团队正在与来自不同社区成员的日常用户合作。正在开发和分享涵盖辩论和安全交叉的课程单元。
项目成果
期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
数据更新时间:{{ journalArticles.updateTime }}
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
数据更新时间:{{ journalArticles.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ monograph.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ sciAawards.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ conferencePapers.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ patent.updateTime }}
Karl Levitt其他文献
Karl Levitt的其他文献
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
{{ truncateString('Karl Levitt', 18)}}的其他基金
TWC: Medium: Collaborative: Towards Securing Coupled Financial and Power Systems in the Next Generation Smart Grid
TWC:中:协作:确保下一代智能电网中耦合金融和电力系统的安全
- 批准号:
1229008 - 财政年份:2012
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
GENI: EAGER: GENI Experiments to Explore Adoption of New Security Services
GENI:EAGER:GENI 实验探索新安全服务的采用
- 批准号:
1152664 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Symbiosis in Byzantine Fault Tolerance and Intrusion Detection
TC:小型:协作研究:拜占庭容错和入侵检测的共生
- 批准号:
1018871 - 财政年份:2010
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
The Verification of Hierarchically Structured Programs
层次结构程序的验证
- 批准号:
7418661 - 财政年份:1975
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
相似国自然基金
昼夜节律性small RNA在血斑形成时间推断中的法医学应用研究
- 批准号:
- 批准年份:2024
- 资助金额:0.0 万元
- 项目类别:省市级项目
tRNA-derived small RNA上调YBX1/CCL5通路参与硼替佐米诱导慢性疼痛的机制研究
- 批准号:
- 批准年份:2022
- 资助金额:10.0 万元
- 项目类别:省市级项目
Small RNA调控I-F型CRISPR-Cas适应性免疫性的应答及分子机制
- 批准号:32000033
- 批准年份:2020
- 资助金额:24.0 万元
- 项目类别:青年科学基金项目
Small RNAs调控解淀粉芽胞杆菌FZB42生防功能的机制研究
- 批准号:31972324
- 批准年份:2019
- 资助金额:58.0 万元
- 项目类别:面上项目
变异链球菌small RNAs连接LuxS密度感应与生物膜形成的机制研究
- 批准号:81900988
- 批准年份:2019
- 资助金额:21.0 万元
- 项目类别:青年科学基金项目
肠道细菌关键small RNAs在克罗恩病发生发展中的功能和作用机制
- 批准号:31870821
- 批准年份:2018
- 资助金额:56.0 万元
- 项目类别:面上项目
基于small RNA 测序技术解析鸽分泌鸽乳的分子机制
- 批准号:31802058
- 批准年份:2018
- 资助金额:26.0 万元
- 项目类别:青年科学基金项目
Small RNA介导的DNA甲基化调控的水稻草矮病毒致病机制
- 批准号:31772128
- 批准年份:2017
- 资助金额:60.0 万元
- 项目类别:面上项目
基于small RNA-seq的针灸治疗桥本甲状腺炎的免疫调控机制研究
- 批准号:81704176
- 批准年份:2017
- 资助金额:20.0 万元
- 项目类别:青年科学基金项目
水稻OsSGS3与OsHEN1调控small RNAs合成及其对抗病性的调节
- 批准号:91640114
- 批准年份:2016
- 资助金额:85.0 万元
- 项目类别:重大研究计划
相似海外基金
TC: Small: Collaborative Research: Implications of Fully Homomorphic Encryption
TC:小型:协作研究:完全同态加密的含义
- 批准号:
1646233 - 财政年份:2016
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Exploiting Network Dynamics for Secret Key Generation
TC:小型:协作研究:利用网络动态生成密钥
- 批准号:
1321223 - 财政年份:2012
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Towards a Formal Framework for Analyzing and Implementing Secure Routing Protocols
TC:小型:协作研究:建立分析和实施安全路由协议的正式框架
- 批准号:
1115706 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Influencing Mental Models of Security
TC:小:协作研究:影响安全心理模型
- 批准号:
1115926 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Exploiting Network Dynamics for Secret Key Generation
TC:小型:协作研究:利用网络动态生成密钥
- 批准号:
1116932 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Membership Inference in a Differentially Private World and Beyond
TC:小:协作研究:差异私人世界及其他世界中的成员资格推断
- 批准号:
1117175 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Viewpoints: Discovering Client- and Server-side Input Validation Inconsistencies to Improve Web Application Security
TC:小型:协作研究:观点:发现客户端和服务器端输入验证不一致以提高 Web 应用程序安全性
- 批准号:
1117167 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Provable Security from Group Theory and Applications
TC:小型:协作研究:从群论和应用中证明安全性
- 批准号:
1117675 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Membership Inference in a Differentially Private World and Beyond
TC:小:协作研究:差异私人世界及其他世界中的成员资格推断
- 批准号:
1116644 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant
TC: Small: Collaborative Research: Viewpoints: Discovering Client- and Server-side Input Validation Inconsistencies to Improve Web Application Security
TC:小型:协作研究:观点:发现客户端和服务器端输入验证不一致以提高 Web 应用程序安全性
- 批准号:
1116967 - 财政年份:2011
- 资助金额:
$ 24.9万 - 项目类别:
Standard Grant














{{item.name}}会员




