YANG-Based Configuration Modeling - The SecSIP IPS Case Study

Abdelkader Lahmadi 1 Emmanuel Nataf 1 Olivier Festor 1
1 MADYNES - Management of dynamic networks and services
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : We present our experience with the development of an XML-based configuration model for an Intrusion Prevention System (IPS) dedicated to the Session Initiation Protocol (SIP) used in voice over IP signaling. In previous works [AL-IM09, AL-NOMS10] we have presented the SecSIP framework, a prevention system for SIP-based networks, which adopts a rule-based approach for specifying preventions on SIP protocol activities to stop attacks exploiting known vulnerability before reaching their targets. The SecSIP framework relies on a proprietary language called VeTo to express the prevention rules. SecSIP uses a plain text configuration file in which specifications are authored and managed manually. While extending the deployment of the framework beyond our own lab, support for remote configuration was required. Given the promise of Netconf, we naturally turned our investigations towards this protocol and embraced the YANG data-modeling framework. In this paper we present the modeling result on the SecSIP configuration interface and share our experience with both YANG and Netconf. The first part of the paper is dedicated to the description of the data to be modeled, namely VeTo policies. The second part presents the Yang model built for VeTo policies and the Netconf framework put in place. Lessons learned during both modeling and coding phases are presented in a third part of the presentation. Finally some conclusions are given and future work is outlined.
Type de document :
Communication dans un congrès
IFIP/IEEE International Symposium on Integrated Network Management, May 2011, Dublin, Ireland. 2011
Liste complète des métadonnées

https://hal.inria.fr/inria-00595825
Contributeur : Emmanuel Nataf <>
Soumis le : mercredi 25 mai 2011 - 16:12:14
Dernière modification le : lundi 12 février 2018 - 11:52:02
Document(s) archivé(s) le : vendredi 26 août 2011 - 02:27:17

Fichier

APSession-Veto31-01.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00595825, version 1

Collections

Citation

Abdelkader Lahmadi, Emmanuel Nataf, Olivier Festor. YANG-Based Configuration Modeling - The SecSIP IPS Case Study. IFIP/IEEE International Symposium on Integrated Network Management, May 2011, Dublin, Ireland. 2011. 〈inria-00595825〉

Partager

Métriques

Consultations de la notice

438

Téléchargements de fichiers

396