The adoption and integration of heterogeneous stacks in most of today's open-source based networks brings clear benefits like interoperability and availability of advanced features. Yet, on the other hand the increasing number of interconnecting components and moving parts requires maintaining an ever increasing base of interdisciplinary knowledge of different tools in different domains to ensure proper operation. To alleviate such efforts, this work proposes a Decision Support System (DSS) to guide infrastructure operators through the selection of security approaches (e.g. tools) to adopt in their environments. This framework easily captures the end-user high-level requirements on the security triad for different domains and runs inference on the designated models to provide the identified tools (security mechanisms) that better serve such needs. The presented DSS aims at delivering an understandable and extensible framework to accommodate varying requirements and Bayesian Network (BN) models. The architecture and modelling of the system are proposed, aligned with its theoretical framework. Its performance is evaluated in terms of time and prediction accuracy.

翻译：当前大多数基于开源网络的异构栈集成带来了互操作性与高级功能可用性等显著优势。然而，互联组件与运动部件数量的持续增长，要求运维人员必须不断积累跨领域、跨工具的多学科知识以确保系统正常运行。为减轻此类负担，本文提出一种决策支持系统（DSS），用于指导基础设施运维人员在各自环境中选择采用的安全方法（如工具）。该框架可便捷地捕获终端用户对不同领域安全三元组的高层级需求，并通过对指定模型执行推理，输出最能满足上述需求的安全机制（工具）。所提出的DSS旨在构建一个兼具可理解性与可扩展性的框架，以适应多样化需求与贝叶斯网络（BN）模型。本文提出了系统的架构与建模方案，并与其理论框架保持一致，同时从执行时间与预测精度两方面对其性能进行了评估。