A model of capabilities of Network Security Functions

Regano L.;
2022-01-01

Abstract

This paper presents a formal model of the features, named security capabilities, offered by the controls used for enforcing security policies in computer networks. It has been designed to support policy refinement and policy translation and address useful, practical tasks in a vendor-independent manner. The model adopts state-of-the-art design patterns and has been designed to be extensible. The model describes the actions that the controls can perform (e.g. deny packets or encrypt flows), the conditions to select on what to apply the actions, how to compose valid configuration rules from them, and how to build configurations from rules. It proved effective to model filtering controls and iptables.
2022
Inglese
NetSoft-2022 Proceedings
978-1-6654-0694-9
IEEE
474
479
6
WOS:000854018800078
2-s2.0-85136783614
https://ieeexplore.ieee.org/document/9844057
2022 IEEE 8th International Conference on Network Softwarization
Esperti anonimi
27 June - 1 July 2022
Milano (Italy)
scientifica
cybersecurity
software networks
security controls
network security functions
Goal 9: Industry, Innovation, and Infrastructure
no
4 Contributo in Atti di Convegno (Proceeding)::4.1 Contributo in Atti di convegno
Basile, C.; Canavese, D.; Regano, L.; Pedone, I.; Lioy, A.
273
5
4.1 Contributo in Atti di convegno
none
info:eu-repo/semantics/conferencePaper
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Questionario e social

Condividi su:
Impostazioni cookie