Implementation of a formal security policy refinement process in WBEM architecture

Laborde, Romain and Kamel, Michel and Barrere, Francois and Benzekri, Abdelmalek (2007) Implementation of a formal security policy refinement process in WBEM architecture. Journal of Network and Systems Management,, 15 (2). pp. 241-266. ISSN 1064-7570 . (The full text of this publication is not available from this repository)

The full text of this publication is not available from this repository. (Contact us about this Publication)
Official URL
http://dx.doi.org/10.1007/s10922-007-9063-z

Abstract

Security mechanisms enforcement consists in configuring devices with the aim that they cooperate and guarantee the defined security goals. In the network context, this task is complex due to the number, the nature, and the interdependencies of the devices to consider. In previous papers, we have proposed a formal framework that focuses on network security information management refinement. The framework includes three abstraction levels: the network security objectives, the network security tactics, and the network security device configurations. The information models of each abstraction level (consistency, correctness and feasibility) are formally specified and analyzed. In this paper we present the integration of this formal refinement process in the WBEM initiative in order to provide a management infrastructure that guarantees the validity of the deployed security configurations

Item Type: Article
Uncontrolled keywords: security policy; network security; security management; WBEM (web-based enterprise management)
Subjects: Q Science > QA Mathematics (inc Computing science) > QA 75 Electronic computers. Computer science
Divisions: Faculties > Science Technology and Medical Studies > School of Computing
Depositing User: Maureen Cook
Date Deposited: 25 Apr 2008 11:19
Last Modified: 01 May 2014 13:31
Resource URI: http://kar.kent.ac.uk/id/eprint/2849 (The current URI for this page, for reference purposes)
  • Depositors only (login required):