An Automata-based Security Policy Translation for Network Security Functions

Submitted by aekwall on Mon, 06/17/2019 - 10:21am

Title	An Automata-based Security Policy Translation for Network Security Functions
Publication Type	Conference Paper
Year of Publication	2018
Authors	Yang, J., Jeong, J. P.
Conference Name	2018 International Conference on Information and Communication Technology Convergence (ICTC)
ISBN Number	978-1-5386-5041-7
Keywords	Automata, automata theory, automata-based security policy translation, computer network security, creating policies, data mining, Data models, Generators, I2NSF framework, I2NSF user, interface to network security functions, IP networks, Network Security Architecture, Policy Translation, policy-based governance, Production, pubcrawl, Resiliency, security, security controller, security of data, security policies, security policy translations, security policy translator
Abstract	This paper proposes the design of a security policy translator in Interface to Network Security Functions (I2NSF) framework. Also, this paper shows the benefits of designing security policy translations. I2NSF is an architecture for providing various Network Security Functions (NSFs) to users. I2NSF user should be able to use NSF even if user has no overall knowledge of NSFs. Generally, policies which are generated by I2NSF user contain abstract data because users do not consider the attributes of NSFs when creating policies. Therefore, the I2NSF framework requires a translator that automatically finds the NSFs which is required for policy when Security Controller receives a security policy from the user and translates it for selected NSFs. We satisfied the above requirements by modularizing the translator through Automata theory.
URL	https://ieeexplore.ieee.org/document/8539702
DOI	10.1109/ICTC.2018.8539702
Citation Key	yang_automata-based_2018

Groups:

Science of Security VO