Collaboration between MAC policies and IDS based on a meta-policy approach

Abstract : This paper presents a new infrastructure based on a novel meta-policy approach. This solution allows to deploy a MAC kernel within a distributed system. It is a completely decentralized solution that has strong fault tolerance properties. Despite a local control of the updates, each local policy satisfies global security properties. Our IDS approach add new security properties. It prevents any accidental or malicious update of the local policies. Moreover, the collaboration between the meta-policy and our IDS system enables to detect illegal sequences of legal operations.
Document type :
Conference papers
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-00081640
Contributor : Jean-François Lalande <>
Submitted on : Friday, June 23, 2006 - 4:33:10 PM
Last modification on : Thursday, January 17, 2019 - 3:06:06 PM

Identifiers

Collections

Citation

Mathieu Blanc, Jérémy Briffaut, Jean-François Lalande, Christian Toinard. Collaboration between MAC policies and IDS based on a meta-policy approach. Workshop on Collaboration and Security 2006, May 2006, Las Vegas, United States. pp.48-55, ⟨10.1109/CTS.2006.25⟩. ⟨hal-00081640⟩

Share

Metrics

Record views

230