English

HAL 9000: a Risk Manager for ITSs

Cryptography and Security 2025-03-24 v2 Artificial Intelligence Operating Systems

Abstract

HAL 9000 is an Intrusion Tolerant Systems (ITSs) Risk Manager, which assesses configuration risks against potential intrusions. It utilizes gathered threat knowledge and remains operational, even in the absence of updated information. Based on its advice, the ITSs can dynamically and proactively adapt to recent threats to minimize and mitigate future intrusions from malicious adversaries. Our goal is to reduce the risk linked to the exploitation of recently uncovered vulnerabilities that have not been classified and/or do not have a script to reproduce the exploit, considering the potential that they may have already been exploited as zero-day exploits. Our experiments demonstrate that the proposed solution can effectively learn and replicate National Vulnerability Database's evaluation process with 99% accuracy.

Keywords

Cite

@article{arxiv.2311.09449,
  title  = {HAL 9000: a Risk Manager for ITSs},
  author = {Tadeu Freitas and Carlos Novo and Joao Soares and Ines Dutra and Manuel E. Correia and Behnam Shariati and Rolando Martins},
  journal= {arXiv preprint arXiv:2311.09449},
  year   = {2025}
}

Comments

10 pages, 4 figures

R2 v1 2026-06-28T13:22:47.518Z