Abstract
Computer networks, widely used by enterprises and individuals nowadays, are still vulnerable when facing traffic injection, human mistakes, malicious attacks and other failures though we spend much more time and cost on security, dependability, performability, survivability, and risk assessment to make the network provide resilient services. This is because these measures are commonly viewed as closely related but a practical means of linking them is often not achieved. Network resilience research brings together all the planning that the network can be managed at a holistic view of resilience management. This paper focuses on network resilience management from “reactive” paradigm to a “proactive” one through Situational Awareness (SA) of internal factors of network and external ones of complex, dynamic and heterogeneous network environment. After surveying the research of network resilience and resilience assessment in the network, we give a model to discuss how to construct awareness of resilience issues which includes four stages. The first step is to get the situational elements about what we are interested in. Second, to understand what happened and what is going on in the networks, pattern learning and pattern matching are exploited to identify challenge. Then, to make proactive resilience management, we need to predict challenges and look for potential ones at this stage. At the fourth stage, resilience management can help take actions of remediation and recovery according to the policy of defender and attacker. After that, the two players’ behaviors of defender and attacker are modeled in the same model by using Extended Generalized Stochastic Game Nets (EGSGN) which combines Game theory into Stochastic Petri Nets. Finally, we give a case study to show how to use EGSGN to depict the network resilience situation in the same model.
Keywords
- resilience
- situation awareness
- resilience situation
- Petri net
This is a preview of subscription content, access via your institution.
Buying options
Preview
Unable to display preview. Download preview PDF.
References
Madni, A.M., Jackson, S.: Towards a conceptual framework for resilience engineering. IEEE Systems Journal 3(2) (2009)
Sterbenz, J.P.G., Hutchison, D., Cetinkaya, E.K., et al.: Resilience and Survivability in Communication Network: Strategies, Principles, and Survey and Disciplines. Computer Networks 54, 1245–1265 (2010)
Smith, P., Scholler, M., Fessi, A., et al.: Network Resilience: A Systematic Approach. Submitted to IEEE Communication (December 2010)
Najjar, W., Gaudiot, J.: Network resilience: A measure of fault tolerance. IEEE Trans. Comput. 39(2), 174–181 (1990)
Joseph, D., Franks, J.K., Freeman, C.N., et al.: Reliable and Resilient End-to-End Connectivity for Heterogeneous Networks. US 2011/0038256 A1 (2011)
Cholda, P., Mykkltveit, A., et al.: A survey of resilience differentiation frameworks in communication network. IEEE Communications Surveys & Tutorials 9(4) (2007)
Menth, M., Duelli, M., Martin, R., Milbrandt, J.: Resilience analysis of packet-witched communication networks. IEEE/ACM Transactions on Networking (2009)
Keralapura, R., Moerschell, A., Chuah, C.N., et al.: A Case for Using Service Availability to Characterize IP Backbone Topologies. Journal of Communications and Networks 8(2) (2006)
Haider, A., Harris, R.: Recovery Techniques in Next Generation Networks. IEEE Communications Surveys & Tutorials 9(3) (2007)
Sousa, B., Pentikousis, K., Curado, M.: REF: Resilience Evaluation Framework. In: 2010 International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT) (2010)
Schaeffer-Filho, A., Smith, P., Mauthe, A., Hutchison, D., Yu, Y., Fry, M.: A Framework for the Design and Evaluation of Network Resilience Management. In: 13th IEEE/IFIP Network Operations and Management Symposium (2012)
Cholda, P., Tapolcai, J., Cinkler, T., et al.: Quality of Resilience as a Network Reliability Characterization Tool. IEEE Network (2009)
Autenrieth, A.: Differentiated Resilience in IP-Based Multilayer Transport Networks. Ph.D. dissertation. Technische University Munchen, Munchen (2003)
Bursztein, E., Goubault-Larrecq, J.: A Logical Framework for Evaluating Network Resilience against Faults and Attacks. In: Cervesato, I. (ed.) ASIAN 2007. LNCS, vol. 4846, pp. 212–227. Springer, Heidelberg (2007)
Sterbenz, J.P.G., Cetinkaya, E.K., Hameed, M.A., et al.: Evaluation of, Network Resilience, Survivability and Disruption Tolerance: Analysis, Topology Generation, Simulation and Experimentation. Springer Telecommunication Systems Journal (2011)
Dove, R.: Patterns of Self-Organizing Agile Security for Resilient Network Situational Awareness and Sensemaking. In: 8th International Conference on Information Technology: New Generations (ITNG) (2011)
Mayron, L.M., Bahr, G.S., et al.: A Hybrid Cognitive- Neurophysiological Approach to Resilient Cyber Security. In: The 2010 Militay Communicatons Conference – Cyber Security and Network Management (2010)
Endsley, M.R.: Toward a Theory of Situation Awareness in Dynamic Systems. Human Factors Journal 37(1), 32–64 (1995)
Bass, T.: Intrusion systems and multisensor data fusion: Creating cyberspace situational awareness. Communications of the ACM 43(4), 99–105 (2000)
Chen, G., Shen, D., et al.: Game Theoretic Approach to Threat Prediction and Situation Awareness. Journal of Advances in Information Fusion 2(1) (2007)
Liu, M., Hutchison, D.: Towards Resilient Networks Using Situation Awareness. In: The 12th Annual Post Graduate Symposium on the Convergence of Telecommunications, Networking and Broadcasting (2011)
Schaeffer-Filho, A., Smith, P., Mauthe, A.: Policy-driven Network Simulation: a Resilience Case Study. In: SAC 2011, March 21-25 (2011)
Zhai, Y., Ning, P., Iyer, P., et al.: Reasoning About Complementary Intrusion Evidence. In: Proceedings of 20th Annual Computer Security Applications Conference (2004)
Steinder, M., Sethi, A.S.: Probabilistic Fault Localization in Communication Systems Using Belief Networks. IEEE/ACM Transactions on Networking 12(5) (2004)
Michael, F., Mathias, F., Paul, S., David, H.: Challenge Identification for Network Resilience. In: 2010 6th EURO-NF Conference on Next Generation Internet (NGI) (2010)
Moitra, S.D., Konda, S.L.: The Survivability of Network Systems: An Empirical Analysis. CMU/SEI-2000-TR-021 (2000)
Sterbenz, J.P.G., Cetinkaya, E.K., Hameed, M.A., et al.: Evaluation of Network Resilience, Survivability and Disruption Tolerance: Analysis, Topology Generation, Simulation and Experimentation. Springer Telecommunication Systems Journal (2011)
Lin, C., Wang, Y., Wang, Y.: A Stochastic Game Nets Based Approach for Network Security Analysis. In: Proc. of the 29th International Conference on Application and Theory of Petri Nets and other Models of Concurrency, Concurrency Methods: Issues and Applications 2008 Workshop (2008) (invited paper)
Zakrzewska, A.N., Ferragut, E.M.: Modeling Cyber Conflicts Using an Extended Petri Net Formalism. In: 2011 IEEE Symposium on Computational Intelligence in Cyber Security (CICS) (2011)
Imperial College DoC MSc Group And MSc Individual Project, http://pipe2.sourceforge.net/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2013 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Liu, M., Feng, T., Smith, P., Hutchison, D. (2013). Situational Awareness for Improving Network Resilience Management. In: Deng, R.H., Feng, T. (eds) Information Security Practice and Experience. ISPEC 2013. Lecture Notes in Computer Science, vol 7863. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-38033-4_3
Download citation
DOI: https://doi.org/10.1007/978-3-642-38033-4_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-38032-7
Online ISBN: 978-3-642-38033-4
eBook Packages: Computer ScienceComputer Science (R0)