A concept of unification of network security policies

Authors:
Dmitry Chernyavskiy;Natalia Miloslavskaya
Affiliations:
National Research Nuclear University MEPhI, Kashirskoe shosse, Moscow, Russia;National Research Nuclear University MEPhI, Kashirskoe shosse, Moscow, Russia
Venue:
Proceedings of the Fifth International Conference on Security of Information and Networks
Year:
2012

Citing 2
Cited 0

Introduction to Formal Language Theory

Introduction to Formal Language Theory
Unified Declarative Platform for Secure Netwoked Information Systems

ICDE '09 Proceedings of the 2009 IEEE International Conference on Data Engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

Security policy is a main mechanism of information security management. While there are a lot of security-related standards and guidelines which specify requirements for high-level security policies, implementation of network security policy still depends on interfaces provided by network security systems (NSS). Obviously, diversity of policy representation languages affects efficiency of policy deployment process. The paper proposes a concept of unification of policy rules for NSSs as a solution for the problem. The idea is based on a formal language which makes it possible to formalize network security policies independently of particular NSSs.