TC: Small: Collaborative Research: An Argumentation-based Framework for Security Management

TC：小型：协作研究：基于论证的安全管理框架

• 批准号: 1118077
• 负责人: Karl Levitt
• 金额: $ 24.9万
• 依托单位: University of California-Davis
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2011
• 资助国家: 美国
• 起止时间: 2011-08-01 至 2015-07-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1118077&HistoricalAwards=false
• 关键词: TC; Small; Collaborative; Research; Argumentation

Computer users are increasingly faced with decisions that impact their personal privacy and the security of the systems they manage. The range of users confronting these challenges has broadened from the early days of computing to include everyone from home users to administrators of large enterprise networks. Privacy policies are frequently obscure, and security settings are typically complex. Missing from the options presented to a user is a decision support mechanism that can assist her in making informed choices. Being presented with the consequences of decisions she is asked to make, among other information, is a necessary component that is currently lacking.This work introduces formal argumentation as a framework for helping users make informed decisions about the security of their computer systems and the privacy of their electronically stored information. Argumentation, a mature theoretical discipline, provides a mechanism for reaching substantiated conclusions when faced with incomplete and inconsistent information. It provides the basis for presenting arguments to a user for or against a position, along with well-founded methods for assessing the outcome of interactions among the arguments. An elegant theory of argumentation has been developed based on meta rules characterizing relationships between arguments. Rules for argument construction and evaluation have been devised for specific domains such as medical diagnosis. This project investigates argumentation as the basis for helping users make informed security- and privacy-related decisions about their computer systems. Three specific aims are addressed:1) Implementation of an inference engine that reasons using argumentation,2) Facilitate security management through an argumentation inference engine, a rule base specialized for security management, and sensors providing security alerts all enhanced with an interactive front-end.3) Reason about the consistency and completeness of domain knowledge, as it evolves.To understand the kinds of domain-specific inference rules required, diverse security applications are studied, such as determining if an attack imperils a particular system, finding the root cause of an attack, deciding on appropriate actions to take in the presence of an uncertain diagnosis of an attack, and deciding on privacy settings. Emerging from this project will be a prototype towards the practice of usable security. The team is working with organizations responsible for the security administration of large enterprise networks and will make the prototype tools available to these organizations. The team is working with everyday users from a cross-section of community members. Curricular modules that cover the intersection of argumentation and security are being developed and shared.

计算机用户越来越多地面临着影响其个人隐私和他们管理的系统安全的决策。面对这些挑战的用户范围已经从计算的早期扩大到包括从家庭用户到大型企业网络管理员的每个人。隐私策略通常是模糊的，安全设置通常是复杂的。呈现给用户的选项中缺少一个可以帮助她做出明智选择的决策支持机制。被提出的后果，她被要求作出的决定，除其他信息，是一个必要的组成部分，目前缺乏的。这项工作介绍了正式的论证作为一个框架，帮助用户作出明智的决定，他们的计算机系统的安全性和隐私的电子存储信息。论证是一门成熟的理论学科，它提供了一种在面对不完整和不一致的信息时得出有根据的结论的机制。它提供了向用户呈现支持或反对某个立场的论据的基础，沿着了用于评估论据之间交互结果的有充分依据的方法。基于表征论点之间关系的Meta规则，已经发展出一种优雅的论证理论。为特定领域（如医学诊断）设计了论证构建和评估规则。这个项目调查论证的基础上，帮助用户作出明智的安全和隐私相关的决定，他们的计算机系统。涉及三个具体目标：1）使用论证推理的推理引擎的实现，2）通过论证推理引擎、专用于安全管理的规则库和提供安全警报的传感器来促进安全管理，所有这些都通过交互式前端来增强。3）随着领域知识的发展，关于领域知识的一致性和完整性的推理。为了理解所需的特定领域推理规则的种类，研究了各种安全应用，例如确定攻击是否危及特定系统，找到攻击的根本原因，在存在对攻击的不确定诊断的情况下决定采取适当的行动，并决定隐私设置。从这个项目中出现的将是一个原型的做法，可用的安全。该小组正在与负责大型企业网络安全管理的组织合作，并将向这些组织提供原型工具。该团队正在与来自社区成员的日常用户合作。目前正在开发和共享涵盖论证和安全交叉问题的课程模块。