A Computational Model and Multi-Agent Simulation for Information Assurance (original) (raw)
2002
: The field of information assurance (IA) is too complex for current modeling tools, While security analysts may understand individual mechanisms at a particular moment, the interactions among the mechanisms, combined with evolving nature of the components, make understanding the entire system nearly impossible. This dissertation introduces a computational model of IA called the Social-Technical Information Assurance Model (STIAM). STIAM models organizations, information infrastructures, and human actors as a complex adaptive system. STIAM provides a structured approach to express organizational IA issues and a graphical notation for depicting the elements and interactions. The model can be implemented in a computational system to discover possible adaptive behavior in an IA environment. A multi-agent simulation is presented that introduces several innovations in multi-agent systems including iconnectors, a biologically inspired visual language and mechanism for inter-agent communic...
Related papers
Collaboration among government organizations offers a venue for dramatic improvement in times of national stress. In no technical area is there a greater requirement for collaboration and cooperation than in the field of Information Assurance. Recent innovations in agent-based modeling and other information technologies offer potential for significant progress in improving intra- and interagency processes in Information Assurance and other disciplines. This paper demonstrates how a convergence of Stuart Kauffman’s Patches Theory with Agent-Based Evidence Marshaling can lead to new ways of visualizing and leveraging areas for cooperation among US government organizations and the polices that guide them.
Platform for computer modeling of information-analytical security management
Platform for computer modeling of information-analytical security management, 2020
The main direction of research is related to the development of information technologies and tools for computer modeling of information-analytical support for security management of socioeconomic systems. The work is dedicated to the creation of platform for management the problems of information support for decision-making security management. The document discusses the architectural and implementation functions of the software package. The complex is a multiagent model platform that provides automated synthesis and analysis of multiagent models of network virtual structures for security management. The model and software tools of the complex allow you to form, research and expand the range of alternative scenarios for modeling crisis situations, which increases the quality of information support for the development and implementation of effective management solutions. The complex consists of independent software agents with a simulator and auxiliary software. The core and components of the system form a virtual space directed to the network, at many levels as an integration platform for problem-oriented multiagent coalition systems to support information in any area of security. The use of the complex provides an opportunity to quickly adapt the modeling platform to the specifics of a particular control problem and high variability in the performance of computational experiments.
Expert Systems and Multi Agent Systems for Information Security Risk Management and Audit
2017
14 www.ijerm.com Abstract— Governing the security of information became an increasingly important challenge for all executive levels of every organization. It is extremely important that security has to be addressed through the whole system development process, not in a late stage i.e. development or maintenance. An effective risk management can protect organizations and maintain their ability to carry out their missions and activities against threats as well helping them to implement relevant controls to their information systems. Our work is part of a project resulting from the collaboration of the systems architecture' team (EAS) that proposes an IT GRC (Governance, risk and compliance) architecture for a high level of IT GRC management. Our solution focuses on IT risks and proposes a new approach of security and audit which aims to provide security managers recommendations to justify their information security management decisions. The EAS-OISRMA (Organization Information ...
Loading Preview
Sorry, preview is currently unavailable. You can download the paper by clicking the button above.