An introduction to Quality of Security Services
Abstract
We examine the concept of security as a dimension of Quality of Service in distributed systems. We provide a discussion and examples of user- specified security variables and show how the range of service levels associated with these variables can support the provision of Quality of Security Service. We also discuss various design implications regarding security ranges provided in a QoS-aware distributed system. Our goal has been to provide an understanding of QoSS and variant security, and to determine whether these concepts can be useful in improving security service and system performance in QoS-aware distributed systems. We described the general requirements for system attributes to participate in the provision of Quality of Service, and described how certain security attributes might meet these requirements. We then described various forms of user and application security "ranges "and showed how these ranges can make sense in relation to existing security policies, when those ranges are presented as user choices. Finally we described security ranges as forming a coherent system of relationships in a distributed multi-tiered system. Our conclusion is that it may be possible for security to be a semantically meaningful dimension of Quality of Service without compromising existing security policies. Further study is needed to understand the effectiveness of QoSS in improving system performance in QoS-aware systems.
NPS Report Number
NPS-CS-00-005Related items
Showing items related by title, author, creator and subject.
-
Quality of Security Service
Irvine, Cynthia E.; Levin, Timothy E. (Proceedings of the New Security Paradigms Workshop, Ballycotton, Ireland, 2000-09-18);We examine the concept of security as a dimension of Quality of Service in distributed systems. Implicit to the concept of Quality of Service is the notion of choice or variation. Security services also offer a range of ... -
Quality of security service: an introduction
Irvine, Cynthia; Levin, Tim (Monterey, California, Naval Postgraduate School, 2000);We examine the concept of security as a dimension of Quality of Service in distributed systems. We provide a discussion and examples of user-specified security variables and show how the range of service levels associated ... -
IPsec Modulation for Quality of Security Service
Sypropoulou, Evdoxia; Agar, Chris; Levin, Timothy E.; Irvine, Cynthia E. (15th International Parallel and Distributed Processing Symposium (IPDPS 2001), 10th Heterogeneous Computing Workshop (HCW 2001), (San Francisco, CA), pp. 810?823, IEEE Computer Society, April 2001.(, 2002-03-13);This paper discusses the modulation of security services in response to changes in network conditions or as a result of modified user or application security requirements. First, the notion of security variability and how ...