A Method of Conflict Detection for Security Policy Based on B+ Tree

Submitted by grigby1 on Fri, 04/03/2020 - 11:04am

Title	A Method of Conflict Detection for Security Policy Based on B+ Tree
Publication Type	Conference Paper
Year of Publication	2019
Authors	Luo, Xueting, Lu, Yueming
Conference Name	2019 IEEE Fourth International Conference on Data Science in Cyberspace (DSC)
Publisher	IEEE
ISBN Number	978-1-7281-4528-0
Keywords	B+ tree, B+ tree-based security policy conflict detection method, Collaboration, Communication networks, computer network management, computer network security, conflict detection, detection algorithms, Indexes, Libraries, network management system, Network security, Policy Based Governance, policy conflict, policy-based governance, Protocols, pubcrawl, Redundancy, security, security policy, tree data structures, trees (mathematics)
Abstract	Security policy is widely used in network management systems to ensure network security. It is necessary to detect and resolve conflicts in security policies. This paper analyzes the shortcomings of existing security policy conflict detection methods and proposes a B+ tree-based security policy conflict detection method. First, the security policy is dimensioned to make each attribute corresponds to one dimension. Then, a layer of B+ tree index is constructed at each dimension level. Each rule will be uniquely mapped by multiple layers of nested indexes. This method can greatly improve the efficiency of conflict detection. The experimental results show that the method has very stable performance which can effectively prevent conflicts, the type of policy conflict can be detected quickly and accurately.
URL	https://ieeexplore.ieee.org/document/8923559
DOI	10.1109/DSC.2019.00077
Citation Key	luo_method_2019

Groups:

Science of Security VO