A probabilistic approach to autonomic security management