Scalable model‐based configuration management of security services in complex enterprise networks

Albuquerque, João Porto de; Krumm, Heiko; Geus, Paulo Lício de; Jeruschkat, René

doi:10.1002/spe.1014

Cited by 5 publications

(6 citation statements)

References 45 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This work consolidates and extends research results from a number of previous publications [83,85,86,87,88,89,90,91,92]. Additionally, two diploma theses at the University of Dortmund [53,55] were co-supervised by the author and contribute to the achievements here presented.…”

Section: Organisationsupporting

confidence: 81%

“…Esta tese consolida e estende resultados de diversas publicações anteriores do autor [83,85,86,87,88,89,90,91,92]. Além disso, duas teses de mestrado foram co-orientadas pelo autor na Universidade de Dortmund (Alemanha) [53,55] e também contribuem com resultados para o presente trabalho.…”

Section: Organização Da Teseunclassified

“…The scalability problems of previous MBM work are also described. This chapter includes parts of the works [90,92].…”

Section: Organisationmentioning

confidence: 99%

See 2 more Smart Citations

Gerenciamento baseado em modelos da configuração de sistemas de segurança em ambientes de redes complexos

Pereira¹,

Geus²

View full text Add to dashboard Cite

na Alemanha. Os trabalhos se realizaram sob a orientação do Prof. Dr. Paulo Lício de Geus e do Prof. Dr. Heiko Krumm, que é co-orientador de facto desta tese, embora não apareça formalmente nessa função por força de restrições de regulamento.Devido a esse caráter inter-institucional e internacional, a pesquisa foi desenvolvida na língua inglesa (lingua franca), que é, portanto, utilizada nos capítulos centrais da tese -em grande parte, versões revistas e estendidas de artigos anteriormente publicados. Uma introdução e um resumo das conclusões (capítulos 0 e 9, respectivamente) são, no entanto, oferecidos na língua portuguesa com o intuito de dar uma visão geral das motivações e contribuições da pesquisa ao leitor não proficiente em inglês.Na impossibilidade de mencionar todas as várias pessoas que contribuíram para esta tese, gostaria de agradecer aqui àquelas que tiveram participação direta em sua realização e com as quais tenho o prazer de dividir os créditos dos acertos nela contidos (os desacertos vão inteiramente por minha conta). Aos professores Paulo Lício de Geus e Heiko Krumm agradeço por seus comentários, pelas trocas de idéias, pelas críticas, pelas pacientes revisões e pelo apoio, combinados a uma grande liberdade, fatores que possibilitaram e impulsionaram este trabalho. A Holger Isenberg e René Jeruschkat agradeço pelo trabalho em conjunto no contexto de suas teses de mestrado (Diplomarbeiten), que muito contribuiu para os resultados aqui alcançados. Sou grato também aos membros da banca de avaliação (Prof. Dr. Joni da Silva Fraga, Prof. Dr. Edgard Jamhour, Prof. Dr. Ricardo Dahab e Prof. Dr. Jacques Wainer) pelas importantes críticas e comentários, e a Helen Mary Murphy Peres Teixeira pela revisão de meus artigos.Esse trabalho não se teria realizado sem o apoio abnegado e o companheirismo de Gabriela. A gratidão que lhe devo está muito além da que posso aqui exprimir.

show abstract

Section: Organisationsupporting

confidence: 81%

Section: Organização Da Teseunclassified

See 1 more Smart Citation

Gerenciamento baseado em modelos da configuração de sistemas de segurança em ambientes de redes complexos

Pereira¹,

Geus²

View full text Add to dashboard Cite

show abstract

“…The capturing and modeling of security requirements is an important concern. An extension of policy-based management and policy hierarchies is proposed in [9] to automatically derive configuration files for large-scale networks. As in our approach (cf.…”

Section: Related Workmentioning

confidence: 99%

Policy Chain for Securing Service Oriented Architectures

Arsac

Laube

Plate

2013

Data Privacy Management and Autonomous Spontaneous Security

View full text Add to dashboard Cite

Abstract. Service Providers using Service Oriented Architecture in order to deliver in-house services as well as on-demand and cloud services have to deal with two interdependent challenges: (1) to achieve, maintain and prove compliance with security requirements stemming from internal needs, 3rd party demands and international regulations and (2) to manage requirements, policies and security configuration in a cost-efficient manner. The deficiencies of current processes and tools force these service providers to trade off profitability against security and compliance. This paper summarizes a novel approach of a policy chain, which links high-level, abstract and declarative security policies on one side and low-level, imperative, and technical security configuration settings on the other side. The paper describes detailed an architecture linking several applications and models via state-machines in order to provide a toolset supporting service providers to build such a holistic policy chain at design time, and to maintain and leverage it during system operation.

show abstract

“…These alarms are first evaluated by the Master Analysis agent, which then notes the level of confidence of the attack and sends it to an Analysis agent, which then produces a tailored plan of response for the attack. Based on the same concern of capturing and modeling of security requirements, Albuquerque et al pro-posed policy-based management framework to automatically derive security configuration for enterprise networks [98]. Their proposal tackles the issue during the design stage of security configuration.…”

Section: Policy-based Dynamic Adaptationmentioning

confidence: 99%

Security configuration management in intrusion detection and prevention systems

Alsubhi

Alhazmi

Bouabdallah

et al. 2012

IJSN

View full text Add to dashboard Cite

Intrusion Detection and/or Prevention Systems (IDPS) represent an important line of defense against a variety of attacks that can compromise the security and proper functioning of an enterprise information system. IDPSs can be network or host-based and can collaborate in order to provide better detection of malicious traffic. Although several IDPS systems have been proposed, their appropriate configuration and control for effective detection/prevention of attacks and efficient resource consumption is still far from trivial.Another concern is related to the slowing down of system performance when maximum security is applied, hence the need to trade off between security enforcement levels and the performance and usability of an enterprise information system.In this dissertation, we present a security management framework for the configuration and control of the security enforcement mechanisms of an enterprise information system. The approach leverages the dynamic adaptation of security measures based on the assessment of system vulnerability and threat prediction, and provides several levels of attack containment. Furthermore, we study the impact of security enforcement levels on the performance and usability of an enterprise information system. In particular, we analyze the impact of an IDPS configuration on the resulting security of the network, and on the network performance. We also analyze the performance of the IDPS for different configurations and under different traffic characteristics. The analysis can then be used to predict the impact of a given security configuration on the prediction of the impact on network performance.iii Acknowledgements All praise is due to Allah who guided me through out this research and beyond.My deepest gratitude is to my advisor, Prof. Raouf Boutaba, for his guidance, support, patience, and encouragement. I have been amazingly fortunate to have an advisor who gave me the freedom to explore on my own, and at the same time the guidance to recover when my steps faltered. He was always available, professional, and friendly. I have learned from him to think differently, be optimistic, and be self motivated. This work would have not been done without his advice and valuable comments.

show abstract

Scalable model‐based configuration management of security services in complex enterprise networks

Cited by 5 publications

References 45 publications

Gerenciamento baseado em modelos da configuração de sistemas de segurança em ambientes de redes complexos

Gerenciamento baseado em modelos da configuração de sistemas de segurança em ambientes de redes complexos

Policy Chain for Securing Service Oriented Architectures

Security configuration management in intrusion detection and prevention systems

Contact Info

Product

Resources

About