Organisational Pattern Driven Recovery Mechanisms
Abstract
The process of reaction to system failures and security attacks is strongly influenced by its infrastructural, procedural and organisational settings. Analysis of reaction procedures and practices from different domains (Air Traffic Management, Response to Computer Security Incident, Response to emergencies, recovery in Chemical Process Industry) highlight three key requirements for this activity: smooth collaboration and coordination among responders, accurate monitoring and management of resources and ability to adapt pre-established reaction plans to the actual context. The SERENITY Reaction Mechanisms (SRM) is the subsystem of the SERENITY Run-time Framework aimed to provide SERENITY aware AmI settings (i.e. socio-technical systems with highly distributed dynamic services) with functionalities to implement applications specific reaction strategies. The SRM uses SERENITY Organisational S&D Patterns as run-time models to drive these three key functionalities.
Keywords
Reaction Plan Incident Response Faulty Sensor Partial Delegation Serenity OrganisationalPreview
Unable to display preview. Download preview PDF.
References
- 1.International Civil Aviation Organization (2005) Threat and Error Management (TEM) in Air Traffic Control. PRELIMINARY EDITION. http://www.flightsafety.org/pdf/tem/tem_icao_10-05.pdf. Accessed July 2008
- 2.Alberts C, Dorofee A, Killcrece G, Ruefle R, Zajicek M (2004) Defining Incident Management Processes for CSIRTs: A Work in Progress.Google Scholar
- 3.Grance T, Kent K, Kim B (2004) Computer Security Incident Handling Guide. NIST Special Publication: 800–861Google Scholar
- 4.Van de Walle B, Turoff M (2007) Emergency Response Systems: Emerging Trends and Technologies. Communications of the ACM Vol.50. No.3Google Scholar
- 5.Kanse L, van der Schaaf TW, Vrijland ND, van Mierlo H, Comparing Two Approaches to Failure Recovery: Medication Preparation versus Chemical Plants,Google Scholar
- 6.Merisol M, Saidane A (2000) A tool to Support Function Allocation. Workshop on Safety and Usability Concern in Aviation, Toulouse (France)Google Scholar
- 7.Carver L, Turoff M (2007) Human-Computer Interaction: the Human and Computer as a Team in Emergency Management Information Systems. Communications of the ACM Vol.50. No.3Google Scholar
- 8.Roth EM, Multer J, Raslear T (2006) Shared Situation Awareness as a Contributor to High Reliability Performance. In Railroad Operations Organization Studies 27: 967–987.CrossRefGoogle Scholar
- 9.SERENITY Project (2006) Security and privacy requirements at organisational level. SERENITY Deliverable A1.D2.1Google Scholar
- 10.SERENITY Project (2008) Enhanced version of network and devices security analysis and verification tools. SERENITY Deliverable A3.D3.2Google Scholar
- 11.Dix A, Rodden T, Davies N, Trevor J, Friday A, Palfreyman K (2000) Exploiting Space and Location as a Design Framework for Interactive Mobile Systems. ACM Transactions on Human-Computer Interaction, Vol. 7, No. 3Google Scholar
- 12.Agrawal A et al (2007) WS-BPEL Extension for People (BPEL4People), Version 1.0. http://download.boulder.ibm.com/ibmdl/pub/software/dw/specs/ws-bpel4people/WS-HumanTask_v1.pdf. Accessed July 2008
- 13.SERENITY Project (2008) Extended set of S&D patterns at organizational level. SERENITY Deliverable A1.D3.2Google Scholar