Dynamic and risk-aware network access management

Lawrence Teo, Gail-Joon Ahn, Yuliang Zheng

Research output: Chapter in Book/Report/Conference proceedingConference contribution

15 Scopus citations

Abstract

Traditional network security technologies such as firewalls and intrusion detection systems usually work according to a static ruleset only. We believe that a better approach to network security can be achieved if we use quantified levels of risk as an input. In this paper, we describe a dynamic access control architecture which uses risk to determine whether to allow or deny access by a source connection into the network. A simulation of our architecture shows favorable and promising results.

Original languageEnglish (US)
Title of host publicationProceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)
Pages217-230
Number of pages14
StatePublished - 2003
Externally publishedYes
EventProceedings of Eighth ACM Symposium on Access Control Models and Technologies - Villa Gallia, Como, Italy
Duration: Jun 2 2003Jun 3 2003

Other

OtherProceedings of Eighth ACM Symposium on Access Control Models and Technologies
CountryItaly
CityVilla Gallia, Como
Period6/2/036/3/03

    Fingerprint

Keywords

  • Dynamic access control
  • Network management
  • Risk
  • Risk awareness
  • Role

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Teo, L., Ahn, G-J., & Zheng, Y. (2003). Dynamic and risk-aware network access management. In Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002) (pp. 217-230)