Visible to the public An Automata-based Security Policy Translation for Network Security Functions

TitleAn Automata-based Security Policy Translation for Network Security Functions
Publication TypeConference Paper
Year of Publication2018
AuthorsYang, J., Jeong, J. P.
Conference Name2018 International Conference on Information and Communication Technology Convergence (ICTC)
KeywordsAutomata, automata theory, automata-based security policy translation, computer network security, creating policies, data mining, Data models, Generators, I2NSF framework, I2NSF user, interface to network security functions, IP networks, Policy Translation, policy-based governance, Production, pubcrawl, security, security controller, security of data, security policies, security policy translations, security policy translator

This paper proposes the design of a security policy translator in Interface to Network Security Functions (I2NSF) framework. Also, this paper shows the benefits of designing security policy translations. I2NSF is an architecture for providing various Network Security Functions (NSFs) to users. I2NSF user should be able to use NSF even if user has no overall knowledge of NSFs. Generally, policies which are generated by I2NSF user contain abstract data because users do not consider the attributes of NSFs when creating policies. Therefore, the I2NSF framework requires a translator that automatically finds the NSFs which is required for policy when Security Controller receives a security policy from the user and translates it for selected NSFs. We satisfied the above requirements by modularizing the translator through Automata theory.

Citation Keyyang_automata-based_2018