Please use this identifier to cite or link to this item: http://hdl.handle.net/10397/70872
PIRA download icon_1.1View/Download Full Text
Title: A quantitative risk assessment model involving frequency and threat degree under line-of-business services for infrastructure of emerging sensor networks
Authors: Jing, X 
Hu, HW
Yang, HJ
Au, MH 
Li, SQ
Xiong, NX
Imran, M
Vasilakos, AV
Issue Date: 2017
Source: Sensors, Mar. 2017, v. 17, no. 3, 642
Abstract: The prospect of Line-of-Business Services (LoBSs) for infrastructure of Emerging Sensor Networks (ESNs) is exciting. Access control remains a top challenge in this scenario as the service provider's server contains a lot of valuable resources. LoBSs' users are very diverse as they may come from a wide range of locations with vastly different characteristics. Cost of joining could be low and in many cases, intruders are eligible users conducting malicious actions. As a result, user access should be adjusted dynamically. Assessing LoBSs' risk dynamically based on both frequency and threat degree of malicious operations is therefore necessary. In this paper, we proposed a Quantitative Risk Assessment Model (QRAM) involving frequency and threat degree based on value at risk. To quantify the threat degree as an elementary intrusion effort, we amend the influence coefficient of risk indexes in the network security situation assessment model. To quantify threat frequency as intrusion trace effort, we make use of multiple behavior information fusion. Under the influence of intrusion trace, we adapt the historical simulation method of value at risk to dynamically access LoBSs' risk. Simulation based on existing data is used to select appropriate parameters for QRAM. Our simulation results show that the duration influence on elementary intrusion effort is reasonable when the normalized parameter is 1000. Likewise, the time window of intrusion trace and the weight between objective risk and subjective risk can be set to 10 s and 0.5, respectively. While our focus is to develop QRAM for assessing the risk of LoBSs for infrastructure of ESNs dynamically involving frequency and threat degree, we believe it is also appropriate for other scenarios in cloud computing.
Keywords: Cloud computing
Line-of-business services
Access control
Risk assessment
Intrusion effort
Publisher: Molecular Diversity Preservation International (MDPI)
Journal: Sensors 
ISSN: 1424-8220
DOI: 10.3390/s17030642
Rights: © 2017 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/).
The following publication Jing, X.; Hu, H.; Yang, H.; Au, M.H.; Li, S.; Xiong, N.; Imran, M.; Vasilakos, A.V. A Quantitative Risk Assessment Model Involving Frequency and Threat Degree under Line-of-Business Services for Infrastructure of Emerging Sensor Networks. Sensors 2017, 17, 642, 1-28 is available at https://dx.doi.org/10.3390/s17030642
Appears in Collections:Journal/Magazine Article

Files in This Item:
File Description SizeFormat 
Jing_Risk_Model_Threat.pdf3.5 MBAdobe PDFView/Open
Open Access Information
Status open access
File Version Version of Record
Access
View full-text via PolyU eLinks SFX Query
Show full item record

Page views

57
Last Week
4
Last month
Citations as of May 29, 2022

Downloads

48
Citations as of May 29, 2022

SCOPUSTM   
Citations

8
Last Week
0
Last month
Citations as of May 27, 2022

WEB OF SCIENCETM
Citations

9
Last Week
0
Last month
Citations as of May 26, 2022

Google ScholarTM

Check

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.