RELIABLE PROCESS FOR SECURITY POLICY DEPLOYMENT

Stere Preda; Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin G. Alfaro; Laurent Toutain

doi:10.5220/0002119200050015

RELIABLE PROCESS FOR SECURITY POLICY DEPLOYMENT

Stere Preda, Nora Cuppens-Boulahia, Frédéric Cuppens, Joaquin G. Alfaro, Laurent Toutain

2007

Abstract

We focus in this paper on the problem of configuring and managing network security devices, such as Firewalls, Virtual Private Network (VPN) tunnels, and Intrusion Detection Systems (IDSs). Our proposal is the following. First, we formally specify the security requirements of a given system by using an expressive access control model. As a result, we obtain an abstract security policy, which is free of ambiguities, redundancies or unnecessary details. Second, we deploy such an abstract policy through a set of automatic compilations into the security devices of the system. This proposed deployment process not only simplifies the security administrator’s job, but also guarantees a resulting configuration free of anomalies and/or inconsistencies.

Download

Paper Citation

in Harvard Style

Preda S., Cuppens-Boulahia N., Cuppens F., G. Alfaro J. and Toutain L. (2007). RELIABLE PROCESS FOR SECURITY POLICY DEPLOYMENT . In Proceedings of the Second International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2007) ISBN 978-989-8111-12-8, pages 5-15. DOI: 10.5220/0002119200050015

in Bibtex Style

@conference{secrypt07,
author={Stere Preda and Nora Cuppens-Boulahia and Frédéric Cuppens and Joaquin G. Alfaro and Laurent Toutain},
title={RELIABLE PROCESS FOR SECURITY POLICY DEPLOYMENT},
booktitle={Proceedings of the Second International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2007)},
year={2007},
pages={5-15},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002119200050015},
isbn={978-989-8111-12-8},
}

in EndNote Style

TY - CONF
JO - Proceedings of the Second International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2007)
TI - RELIABLE PROCESS FOR SECURITY POLICY DEPLOYMENT
SN - 978-989-8111-12-8
AU - Preda S.
AU - Cuppens-Boulahia N.
AU - Cuppens F.
AU - G. Alfaro J.
AU - Toutain L.
PY - 2007
SP - 5
EP - 15
DO - 10.5220/0002119200050015