Blockchain-based automated and robust cyber security management

Songlin He; Eric Ficke; Mir Mehedi Ahsan Pritom; Huashan Chen; Qiang Tang; Qian Chen; Marcus Pendleton; Laurent Njilla; Shouhuai Xu

doi:10.1016/j.jpdc.2022.01.002

Blockchain-based automated and robust cyber security management

Songlin He, Eric Ficke, Mir Mehedi Ahsan Pritom, Huashan Chen, Qiang Tang, Qian Chen, Marcus Pendleton, Laurent Njilla, Shouhuai Xu

Research output: Contribution to journal › Article › peer-review

20 Scopus citations

Abstract

We initiate the study on the problem of automated and robust Cyber Security Management (CSM). We exemplify the problem by investigating how CSM should respond to the discovery of cyber intelligence that identifies new attackers, victims, or defense capabilities. Given the complexity of CSM, we divide it into three classes, referred to as Network-centric (N-CSM), Tools-centric (T-CSM) and Application-centric (A-CSM). These lead to a range of functions for examining whether, and to what extent, a network has been compromised. Moreover, we propose to incorporate blockchain (via Hyperledger Fabric) to build a decentralized CSM system, dubbed B2CSM, that ensures the retrieval of valid invocation results for CSM purposes. We also integrate B2CSM with a decentralized storage network (DSN), instantiated by InterPlanetary File System (IPFS), to reduce on-chain storage costs without hindering its robustness. We present the design and implementation of the prototype B2CSM system. Experiments with real-world datasets show that the CSM solutions and system are effective and efficient.

Original language	English (US)
Pages (from-to)	62-82
Number of pages	21
Journal	Journal of Parallel and Distributed Computing
Volume	163
DOIs	https://doi.org/10.1016/j.jpdc.2022.01.002
State	Published - May 2022
Externally published	Yes

All Science Journal Classification (ASJC) codes

Software
Theoretical Computer Science
Hardware and Architecture
Computer Networks and Communications
Artificial Intelligence

Keywords

Blockchain
Cyber security management
Hyperledger fabric
IPFS

Access to Document

10.1016/j.jpdc.2022.01.002

Cite this

@article{0a8bd857befb4423a8c38896587dd557,

title = "Blockchain-based automated and robust cyber security management",

abstract = "We initiate the study on the problem of automated and robust Cyber Security Management (CSM). We exemplify the problem by investigating how CSM should respond to the discovery of cyber intelligence that identifies new attackers, victims, or defense capabilities. Given the complexity of CSM, we divide it into three classes, referred to as Network-centric (N-CSM), Tools-centric (T-CSM) and Application-centric (A-CSM). These lead to a range of functions for examining whether, and to what extent, a network has been compromised. Moreover, we propose to incorporate blockchain (via Hyperledger Fabric) to build a decentralized CSM system, dubbed B2CSM, that ensures the retrieval of valid invocation results for CSM purposes. We also integrate B2CSM with a decentralized storage network (DSN), instantiated by InterPlanetary File System (IPFS), to reduce on-chain storage costs without hindering its robustness. We present the design and implementation of the prototype B2CSM system. Experiments with real-world datasets show that the CSM solutions and system are effective and efficient.",

keywords = "Blockchain, Cyber security management, Hyperledger fabric, IPFS",

author = "Songlin He and Eric Ficke and Pritom, {Mir Mehedi Ahsan} and Huashan Chen and Qiang Tang and Qian Chen and Marcus Pendleton and Laurent Njilla and Shouhuai Xu",

note = "Publisher Copyright: {\textcopyright} 2022 Elsevier Inc.",

year = "2022",

month = may,

doi = "10.1016/j.jpdc.2022.01.002",

language = "English (US)",

volume = "163",

pages = "62--82",

journal = "Journal of Parallel and Distributed Computing",

issn = "0743-7315",

publisher = "Academic Press Inc.",

}

TY - JOUR

T1 - Blockchain-based automated and robust cyber security management

AU - He, Songlin

AU - Ficke, Eric

AU - Pritom, Mir Mehedi Ahsan

AU - Chen, Huashan

AU - Tang, Qiang

AU - Chen, Qian

AU - Pendleton, Marcus

AU - Njilla, Laurent

AU - Xu, Shouhuai

PY - 2022/5

Y1 - 2022/5

N2 - We initiate the study on the problem of automated and robust Cyber Security Management (CSM). We exemplify the problem by investigating how CSM should respond to the discovery of cyber intelligence that identifies new attackers, victims, or defense capabilities. Given the complexity of CSM, we divide it into three classes, referred to as Network-centric (N-CSM), Tools-centric (T-CSM) and Application-centric (A-CSM). These lead to a range of functions for examining whether, and to what extent, a network has been compromised. Moreover, we propose to incorporate blockchain (via Hyperledger Fabric) to build a decentralized CSM system, dubbed B2CSM, that ensures the retrieval of valid invocation results for CSM purposes. We also integrate B2CSM with a decentralized storage network (DSN), instantiated by InterPlanetary File System (IPFS), to reduce on-chain storage costs without hindering its robustness. We present the design and implementation of the prototype B2CSM system. Experiments with real-world datasets show that the CSM solutions and system are effective and efficient.

AB - We initiate the study on the problem of automated and robust Cyber Security Management (CSM). We exemplify the problem by investigating how CSM should respond to the discovery of cyber intelligence that identifies new attackers, victims, or defense capabilities. Given the complexity of CSM, we divide it into three classes, referred to as Network-centric (N-CSM), Tools-centric (T-CSM) and Application-centric (A-CSM). These lead to a range of functions for examining whether, and to what extent, a network has been compromised. Moreover, we propose to incorporate blockchain (via Hyperledger Fabric) to build a decentralized CSM system, dubbed B2CSM, that ensures the retrieval of valid invocation results for CSM purposes. We also integrate B2CSM with a decentralized storage network (DSN), instantiated by InterPlanetary File System (IPFS), to reduce on-chain storage costs without hindering its robustness. We present the design and implementation of the prototype B2CSM system. Experiments with real-world datasets show that the CSM solutions and system are effective and efficient.

KW - Blockchain

KW - Cyber security management

KW - Hyperledger fabric

KW - IPFS

UR - http://www.scopus.com/inward/record.url?scp=85124186957&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85124186957&partnerID=8YFLogxK

U2 - 10.1016/j.jpdc.2022.01.002

DO - 10.1016/j.jpdc.2022.01.002

M3 - Article

AN - SCOPUS:85124186957

SN - 0743-7315

VL - 163

SP - 62

EP - 82

JO - Journal of Parallel and Distributed Computing

JF - Journal of Parallel and Distributed Computing

ER -

Blockchain-based automated and robust cyber security management

Abstract

All Science Journal Classification (ASJC) codes

Keywords

Access to Document

Other files and links

Fingerprint

Cite this