Managing heterogeneous network environments using an extensible policy framework

Lawrence Teo, Gail-Joon Ahn

Research output: Chapter in Book/Report/Conference proceedingConference contribution

10 Citations (Scopus)

Abstract

Security policy management is critical to meet organizational needs and reduce potential risks because almost every organization depends on computer networks and the Internet for their daily operations. It is therefore important to specify and enforce security policies effectively. However, as organizations grow, so do their networks increasing the difficulty of deploying a security policy, especially across heterogeneous systems. In this paper, we introduce a policy framework called Chameleos-x which is designed to enforce security policies consistently across security-aware systems with network services-primarily operating systems, firewalls, and intrusion detection systems. Throughout this paper, we focus on the design and architecture of Chameleos-x and demonstrate how our policy framework helps organizations implement security policies in changing, diversity-rich environments. We also describe our experimentation of Chameleos-x to demonstrate the feasibility of the proposed approach.

Original languageEnglish (US)
Title of host publicationProceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07
Pages362-364
Number of pages3
DOIs
StatePublished - 2007
Externally publishedYes
Event2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07 - Singapore, Singapore
Duration: Mar 20 2007Mar 22 2007

Other

Other2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07
CountrySingapore
CitySingapore
Period3/20/073/22/07

Fingerprint

Heterogeneous networks
Intrusion detection
Computer networks
Internet

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Software

Cite this

Teo, L., & Ahn, G-J. (2007). Managing heterogeneous network environments using an extensible policy framework. In Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07 (pp. 362-364) https://doi.org/10.1145/1229285.1229328

Managing heterogeneous network environments using an extensible policy framework. / Teo, Lawrence; Ahn, Gail-Joon.

Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07. 2007. p. 362-364.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Teo, L & Ahn, G-J 2007, Managing heterogeneous network environments using an extensible policy framework. in Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07. pp. 362-364, 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07, Singapore, Singapore, 3/20/07. https://doi.org/10.1145/1229285.1229328
Teo L, Ahn G-J. Managing heterogeneous network environments using an extensible policy framework. In Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07. 2007. p. 362-364 https://doi.org/10.1145/1229285.1229328
Teo, Lawrence ; Ahn, Gail-Joon. / Managing heterogeneous network environments using an extensible policy framework. Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07. 2007. pp. 362-364
@inproceedings{66a596498c71496598510654b397853f,
title = "Managing heterogeneous network environments using an extensible policy framework",
abstract = "Security policy management is critical to meet organizational needs and reduce potential risks because almost every organization depends on computer networks and the Internet for their daily operations. It is therefore important to specify and enforce security policies effectively. However, as organizations grow, so do their networks increasing the difficulty of deploying a security policy, especially across heterogeneous systems. In this paper, we introduce a policy framework called Chameleos-x which is designed to enforce security policies consistently across security-aware systems with network services-primarily operating systems, firewalls, and intrusion detection systems. Throughout this paper, we focus on the design and architecture of Chameleos-x and demonstrate how our policy framework helps organizations implement security policies in changing, diversity-rich environments. We also describe our experimentation of Chameleos-x to demonstrate the feasibility of the proposed approach.",
author = "Lawrence Teo and Gail-Joon Ahn",
year = "2007",
doi = "10.1145/1229285.1229328",
language = "English (US)",
isbn = "1595935746",
pages = "362--364",
booktitle = "Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07",

}

TY - GEN

T1 - Managing heterogeneous network environments using an extensible policy framework

AU - Teo, Lawrence

AU - Ahn, Gail-Joon

PY - 2007

Y1 - 2007

N2 - Security policy management is critical to meet organizational needs and reduce potential risks because almost every organization depends on computer networks and the Internet for their daily operations. It is therefore important to specify and enforce security policies effectively. However, as organizations grow, so do their networks increasing the difficulty of deploying a security policy, especially across heterogeneous systems. In this paper, we introduce a policy framework called Chameleos-x which is designed to enforce security policies consistently across security-aware systems with network services-primarily operating systems, firewalls, and intrusion detection systems. Throughout this paper, we focus on the design and architecture of Chameleos-x and demonstrate how our policy framework helps organizations implement security policies in changing, diversity-rich environments. We also describe our experimentation of Chameleos-x to demonstrate the feasibility of the proposed approach.

AB - Security policy management is critical to meet organizational needs and reduce potential risks because almost every organization depends on computer networks and the Internet for their daily operations. It is therefore important to specify and enforce security policies effectively. However, as organizations grow, so do their networks increasing the difficulty of deploying a security policy, especially across heterogeneous systems. In this paper, we introduce a policy framework called Chameleos-x which is designed to enforce security policies consistently across security-aware systems with network services-primarily operating systems, firewalls, and intrusion detection systems. Throughout this paper, we focus on the design and architecture of Chameleos-x and demonstrate how our policy framework helps organizations implement security policies in changing, diversity-rich environments. We also describe our experimentation of Chameleos-x to demonstrate the feasibility of the proposed approach.

UR - http://www.scopus.com/inward/record.url?scp=34748829785&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34748829785&partnerID=8YFLogxK

U2 - 10.1145/1229285.1229328

DO - 10.1145/1229285.1229328

M3 - Conference contribution

AN - SCOPUS:34748829785

SN - 1595935746

SN - 9781595935748

SP - 362

EP - 364

BT - Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07

ER -