What problem does this paper attempt to address?

This paper proposes a solution to address the problem of modeling and performance evaluation of computer system security operations. With the rapid development of computer systems and networks, the importance of computer security in organizations is increasing. Research on new security system performance analysis models is crucial due to the potential severe losses caused by ineffective security protections. The authors developed a formal model based on a fork-join queue network to describe the security operations of computer systems. They introduced a security operation performance metric and demonstrated how to use this model to evaluate the performance of real systems. The paper also introduces a security system performance analysis technique and discusses its practical applications. Specifically, the model covers a range of security activities, including attack detection, vulnerability analysis, recovery planning, and software and data recovery. Each operation cycle begins with attack detection, followed by the assessment of system integrity and identification of potential vulnerabilities. Based on the results of the integrity analysis, the software and data recovery process is initiated, and countermeasures against similar attacks are devised. Finally, the operation cycle is concluded by modifying the software, databases, and security policies. The paper also defines the attack cycle time and recovery cycle time and proposes a performance measurement ratio R, which represents the ratio of recovery cycle time to attack cycle time, to measure the proportion of time the system spends in the recovery state. The overall performance of the entire system is evaluated based on the maximum service time, and it is recommended for administrators to prioritize and reduce the time required for the longest process to optimize system performance. Additionally, the model and the related ratio R can be used for effective monitoring of an organization's security system and can be extended to cover security operations processes with different flow and priority constraints. The paper concludes by referencing the formalized approach of fork-join networks and the related matrix theory to describe the dynamics of the model.

Modeling and performance evaluation of computer systems security operation

A Framework to Evaluate and Predict Performances in Virtual Machines Environment

Performance Evaluation for Sdn Deployment: an Approach Based on Stochastic Network Calculus

Hybrid Performance Modeling And Analyzing Of Parallel Systems

Security Evaluation Techniques and Network Performance Simulation Based on Queue Model

Performance Evaluation of Security Protocols

A Stochastic Model for Quantitative Security Analyses of Networked Systems.

A New Model of Security for Distributed Systems

Stochastic Modeling and Evaluation for Network Security

Study on Evaluation for Security Situation of Networked Systems

Power Information Systems Security: Modeling and Quantitative Evaluation

Towards Quantifying the (in)security of Networked Systems.

Quantifiable & Comparable Evaluations of Cyber Defensive Capabilities: A Survey & Novel, Unified Approach

A trade-off model for performance and security in secured Networked Control Systems

Quantitative Security Evaluation Model for Security Management

Computer Security Models Survey

Quantitative Evaluation Technology of Computer System Security Based on Probability and Statistics

A New Approach to Modeling and Analyzing Security of Networked Systems

A performance model for the OSI RPC architecture

Modeling and Performance Analysis of Semiconductor Manufacturing Systems.

Modeling Network Security: Case Study of Email System