FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W1516513596> ?p ?o ?g. }

• W1516513596 endingPage "163" @default.
• W1516513596 startingPage "163" @default.
• W1516513596 abstract "Security in computer systems is concerned with protecting resources from unauthorized access while ensuring legitimate requests can be satisfied all the time. The recent growth of computer systems both in scale and complexity poses tremendous management challenges. Policy-based systems management is a very promising solution in this scenario. It allows the separation of the rules that govern the behavior choices of a system from the provided functionality, and can be adapted to handle a large number of system elements. In the past two decades there have been many advances in the field of policy research. Although existing solutions in centralized systems are well-established, they do not work nearly as well in distributed environments because of scalability, network partitions, and the heterogeneity of the endpoints. This dissertation contributes to this endeavor by proposing three novel techniques to address the problem of security policy definition and enforcement in large-scale distributed systems. To correctly enforce service and security requirements from users who have no intimate knowledge of the underlying systems, we introduce the first distributed policy refinement solution that translates high-level policies into low-level implementable rules, for which the syntax and semantics can be fully interpreted by individual enforcement points. Taking advantage of both the centralized and end-to-end enforcement approaches, we propose a novel policy algebra framework for policy delegation, composition and analysis. As a concrete instantiation of policy delegation enabled by the algebraic framework, we invent a novel firewall system, called ROFL (ROuting as the firewall layer), that implements packet filtering using the underlying routing techniques. ROFL implements a form of ubiquitous enforcement, and is able to drop malicious packets closer to their origins to save transmission bandwidth and battery power, especially for resource-limited devices in mobile ad hoc networks (MANET). The correctness and consistency of ROFL can be verified using policy algebra. It provides formalisms to address the complexity of distributed environments, increase assurance and show how to tune tradeoffs and improve security with ubiquitous enforcement. To demonstrate the effectiveness and efficiency of ROFL as a high-performance firewall mechanism, we analyze its performance quantitatively and conduct experiments in a simulated environment with two ad-hoc routing protocols. Empirical study shows that the increase in traffic for handling ROFL routing messages is more than outweighed by the savings by early drops of unwanted traffic." @default.
• W1516513596 created "2016-06-24" @default.
• W1516513596 creator A5062587172 @default.
• W1516513596 creator A5078255942 @default.
• W1516513596 date "2012-01-01" @default.
• W1516513596 modified "2023-09-23" @default.
• W1516513596 title "Security policy definition and enforcement in distributed systems" @default.
• W1516513596 cites W1483885793 @default.
• W1516513596 cites W1492689271 @default.
• W1516513596 cites W1549535141 @default.
• W1516513596 cites W1576272305 @default.
• W1516513596 cites W1586338668 @default.
• W1516513596 cites W1594668951 @default.
• W1516513596 cites W1655578144 @default.
• W1516513596 cites W1655990431 @default.
• W1516513596 cites W1678529581 @default.
• W1516513596 cites W1807098818 @default.
• W1516513596 cites W1811337449 @default.
• W1516513596 cites W1855210909 @default.
• W1516513596 cites W1862916278 @default.
• W1516513596 cites W1958859150 @default.
• W1516513596 cites W1967951878 @default.
• W1516513596 cites W1979579813 @default.
• W1516513596 cites W201119258 @default.
• W1516513596 cites W2012419258 @default.
• W1516513596 cites W2022980325 @default.
• W1516513596 cites W2048056473 @default.
• W1516513596 cites W2053694592 @default.
• W1516513596 cites W2057345152 @default.
• W1516513596 cites W2066579582 @default.
• W1516513596 cites W2069519268 @default.
• W1516513596 cites W2082242284 @default.
• W1516513596 cites W2091169407 @default.
• W1516513596 cites W2102258543 @default.
• W1516513596 cites W2102398950 @default.
• W1516513596 cites W2106404099 @default.
• W1516513596 cites W2108732836 @default.
• W1516513596 cites W2120900812 @default.
• W1516513596 cites W2122213203 @default.
• W1516513596 cites W2122240139 @default.
• W1516513596 cites W2122709634 @default.
• W1516513596 cites W2124511523 @default.
• W1516513596 cites W2126863958 @default.
• W1516513596 cites W2134296086 @default.
• W1516513596 cites W2135944707 @default.
• W1516513596 cites W2141836767 @default.
• W1516513596 cites W2144794336 @default.
• W1516513596 cites W2145721479 @default.
• W1516513596 cites W2148135143 @default.
• W1516513596 cites W2151775459 @default.
• W1516513596 cites W2152217824 @default.
• W1516513596 cites W2154765153 @default.
• W1516513596 cites W2156299128 @default.
• W1516513596 cites W2160742791 @default.
• W1516513596 cites W2162171351 @default.
• W1516513596 cites W2165065735 @default.
• W1516513596 cites W2165166732 @default.
• W1516513596 cites W2166602595 @default.
• W1516513596 cites W2168500256 @default.
• W1516513596 cites W2169528473 @default.
• W1516513596 cites W2170496240 @default.
• W1516513596 cites W2242919977 @default.
• W1516513596 cites W2248064281 @default.
• W1516513596 cites W2255844979 @default.
• W1516513596 cites W2738444131 @default.
• W1516513596 cites W2996027056 @default.
• W1516513596 cites W3103987592 @default.
• W1516513596 cites W3167011080 @default.
• W1516513596 doi "https://doi.org/10.7916/d8sf3392" @default.
• W1516513596 hasPublicationYear "2012" @default.
• W1516513596 type Work @default.
• W1516513596 sameAs 1516513596 @default.
• W1516513596 citedByCount "0" @default.
• W1516513596 crossrefType "journal-article" @default.
• W1516513596 hasAuthorship W1516513596A5062587172 @default.
• W1516513596 hasAuthorship W1516513596A5078255942 @default.
• W1516513596 hasConcept C117110713 @default.
• W1516513596 hasConcept C120314980 @default.
• W1516513596 hasConcept C154908896 @default.
• W1516513596 hasConcept C17744445 @default.
• W1516513596 hasConcept C199539241 @default.
• W1516513596 hasConcept C2779777834 @default.
• W1516513596 hasConcept C29983905 @default.
• W1516513596 hasConcept C38652104 @default.
• W1516513596 hasConcept C41008148 @default.
• W1516513596 hasConcept C48044578 @default.
• W1516513596 hasConcept C527648132 @default.
• W1516513596 hasConcept C77088390 @default.
• W1516513596 hasConcept C86532276 @default.
• W1516513596 hasConceptScore W1516513596C117110713 @default.
• W1516513596 hasConceptScore W1516513596C120314980 @default.
• W1516513596 hasConceptScore W1516513596C154908896 @default.
• W1516513596 hasConceptScore W1516513596C17744445 @default.
• W1516513596 hasConceptScore W1516513596C199539241 @default.
• W1516513596 hasConceptScore W1516513596C2779777834 @default.
• W1516513596 hasConceptScore W1516513596C29983905 @default.
• W1516513596 hasConceptScore W1516513596C38652104 @default.
• W1516513596 hasConceptScore W1516513596C41008148 @default.

• next