Distributed control enabling consistent MAC policies and IDS based on a meta-policy approach

Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06) Pub Date : 2006-06-05 DOI:10.1109/POLICY.2006.15

M. Blanc, Jérémy Briffaut, Jean-François Lalande, C. Toinard

{"title":"Distributed control enabling consistent MAC policies and IDS based on a meta-policy approach","authors":"M. Blanc, Jérémy Briffaut, Jean-François Lalande, C. Toinard","doi":"10.1109/POLICY.2006.15","DOIUrl":null,"url":null,"abstract":"This paper presents a new framework based on a meta-policy linked to a new intrusion detection approach. It deploys a MAC kernel within a distributed system while guaranteeing the consistency of the security policy, preventing any accidental or malicious update of the local policies of each host. Access control decisions are resolved locally in accordance with a meta-policy. At the same time, the framework allows the evolution of the distributed policy without any network communication, and also guarantees that it satisfies the global security properties defined in the meta-policy. The combined policy and IDS approach relies on trusted operating systems integrating MAC and RBAC. The proposed architecture controls a wider set of attacks and provides increased fault-tolerance, compared to other existing distributed access control approaches and policy-based IDS techniques. Details are given about languages used for the meta-policy, and implementation of the framework","PeriodicalId":169233,"journal":{"name":"Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06)","volume":"48 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-06-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/POLICY.2006.15","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 15

Abstract

This paper presents a new framework based on a meta-policy linked to a new intrusion detection approach. It deploys a MAC kernel within a distributed system while guaranteeing the consistency of the security policy, preventing any accidental or malicious update of the local policies of each host. Access control decisions are resolved locally in accordance with a meta-policy. At the same time, the framework allows the evolution of the distributed policy without any network communication, and also guarantees that it satisfies the global security properties defined in the meta-policy. The combined policy and IDS approach relies on trusted operating systems integrating MAC and RBAC. The proposed architecture controls a wider set of attacks and provides increased fault-tolerance, compared to other existing distributed access control approaches and policy-based IDS techniques. Details are given about languages used for the meta-policy, and implementation of the framework

查看原文本刊更多论文

分布式控制，支持基于元策略方法的一致MAC策略和IDS

本文提出了一个基于元策略的新框架，该框架与一种新的入侵检测方法相关联。它在分布式系统中部署MAC内核，同时保证安全策略的一致性，防止每台主机的本地策略被意外或恶意更新。访问控制决策根据元策略在本地解决。同时，该框架允许分布式策略在没有任何网络通信的情况下演进，并保证其满足元策略中定义的全局安全属性。组合策略和IDS方法依赖于集成MAC和RBAC的可信操作系统。与其他现有的分布式访问控制方法和基于策略的IDS技术相比，所建议的体系结构控制了更广泛的攻击集，并提供了更高的容错性。详细介绍了用于元策略的语言和框架的实现

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06)

自引率

0.00%

发文量