Providing Security Assurance & Hardening for Open Source Software/Hardware: The SecOPERA approach
Creators
- Fournaris, Apostolos P.1
- Tselios, Christos1
- Haleplidis, Evangelos1
- Athanasopoulos, Elias2
- Dionysiou, Antreas2
- Mitropoulos, Dimitrios3, 4
- Louridas, Panos3
- Christou, Georgios5
- Athanatos, Manos5
- Hatzivasilis, George5
- Georgopoulos, Konstantinos5
- Kalogeros, Costas6
- Kotselidis6, Christos7, 8
- Vogl, Simon9
- Hamon, Francois10
- Ioannidis, Sotiris5
- 1. Industrial Systems Institute, Research Center ATHENA, Patras, Greece
- 2. University of Cyprus, Nicosia, Cyprus
- 3. Department of Management Science and Technology, Athens University of Economics and Business, Athens, Greece
- 4. Department of Business Administration, University of Athens, Greece
- 5. School of Electrical and Computer Engineering, Technical University of Crete, Greece
- 6. AEGIS IT RESEARCH LTD, Germany
- 7. Pierer Innovation, Austria
- 8. University of Manchester, UK
- 9. VoXel Interaction Design, Linz, Austria
- 10. GreenCitizen, Marseille, France
Description
Rapid open-source software and hardware prototyp- ing fueled by the significant expansion of the development com- munity, led to the deployment of highly sophisticated frameworks, solutions and products. However, as the provided open-source solutions are managed in all aspects by their designers/engineers, they lack professional evaluation of their security level. The absence of comprehensive security assessment as well as a consolidated and ubiquitous roadmap for vulnerability patching and security hardening, makes open-source solution a risk for widespread enterprise use. This paper introduces a security assurance approach which addresses open-source hardware and software shortcoming in an end-to-end manner, by providing a logical decomposition of any such module into four distinct com- ponent layers: device, network, application and cognitive. This allows highly focused security assessment, taking into consider- ation the specific characteristics of each layer. In addition, the paper provides an approach on how open-source solution security can be improved, through decomposition, layered vulnerability mitigation and specialized security hardening techniques. The proposed framework which is the main research and innovation focus of the SecOPERA Project intends to transform an open source solution to a protected one, as well as provide security guarantees of its overall security status.
Files
Fournaris_et_al-IEEE_CAMAD_23_SecOPERA_concept.pdf
Files
(261.0 kB)
| Name | Size | Download all |
|---|---|---|
|
md5:9a0a11e22df56bdab04a6cd2a460a31f
|
261.0 kB | Preview Download |