Skip to Main content Skip to Navigation
New interface
Conference papers

Multi-constraint Security Policies for Delegated Firewall Administration

Cassio Ditzel Kropiwiec 1 Edgard Jamhour Manoel Camillo de Oliveira Penna Neto Guy Pujolle 1 
1 Phare
LIP6 - Laboratoire d'Informatique de Paris 6
Abstract : This work presents a new policy based security framework that is able handle simultaneously and coherently mandatory, discretionary and security property policies. One important aspect of the proposed framework is that each dimension of the security policies can be managed independently, allowing people playing different roles in an organization to define security policies without violating a global security goal. The framework creates an abstract layer that permits to define security policies independently of how they will be enforced. For example, the mandatory and security property polices could be assigned to the risk management staff while the discretionary policies could be delegated among the several departments in the organization.
Document type :
Conference papers
Complete list of metadata
Contributor : Lip6 Publications Connect in order to contact the contributor
Submitted on : Monday, April 18, 2016 - 2:09:01 PM
Last modification on : Sunday, June 26, 2022 - 9:54:28 AM

Links full text



Cassio Ditzel Kropiwiec, Edgard Jamhour, Manoel Camillo de Oliveira Penna Neto, Guy Pujolle. Multi-constraint Security Policies for Delegated Firewall Administration. 19th IFIP/IEEE International Workshop on Distributed Systems: Operations and Management, DSOM 2008, Sep 2008, Samos Island, Greece. pp.123-135, ⟨10.1007/978-3-540-87353-2_10⟩. ⟨hal-01303616⟩



Record views