An Approach to Information Security Policy Modeling for Enterprise Networks

Abstract : Network security management is one of the most topical concerns of information security (IS) in modern enterprises. Due to great variety and increasing complexity of network security systems (NSSs) there is a challenge to manage them in accordance with IS policies. Incorrect configurations of NSSs lead to outages and appearance of vulnerabilities in networks. Moreover, policy management is a time and resource consuming process, which takes significant amount of manual work. The paper discusses issues of policy management process in its application for NSSs and describes a policy model aimed to facilitate the process by means of specification of IS policies independently on platforms of NSSs, selection of the most effective NSSs aligned with the policies, and implementation of the policies in configurations of the NSSs.
Complete list of metadatas

https://hal.inria.fr/hal-01404201
Contributor : Hal Ifip <>
Submitted on : Monday, November 28, 2016 - 2:53:12 PM
Last modification on : Monday, November 28, 2016 - 2:59:36 PM
Long-term archiving on : Monday, March 20, 2017 - 10:49:23 PM

File

978-3-662-44885-4_10_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Dmitry Chernyavskiy, Natalia Miloslavskaya. An Approach to Information Security Policy Modeling for Enterprise Networks. 15th IFIP International Conference on Communications and Multimedia Security (CMS), Sep 2014, Aveiro, Portugal. pp.118-127, ⟨10.1007/978-3-662-44885-4_10⟩. ⟨hal-01404201⟩

Share

Metrics

Record views

106

Files downloads

250