Home

Policy Refinement of Network Services for MANETs

Hang Zhao; Jorge Lobo; Arnab Roy; Steven Michael Bellovin

Title:
Policy Refinement of Network Services for MANETs
Author(s):
Zhao, Hang
Lobo, Jorge
Roy, Arnab
Bellovin, Steven Michael
Date:
Type:
Articles
Department:
Computer Science
Permanent URL:
Book/Journal Title:
Proceedings of the 12th IFIP/IEEE International Symposium on Integrated Network Management (IM 2011): Dublin, Ireland, 23-27 May 2011
Book Author:
Agoulmine, Nazim
Publisher:
IEEE Computer Society
Publisher Location:
Los Alamitos, Calif.
Abstract:
In this paper, we describe a framework for a refinement scheme located in a centralized policy server that consists of three components: a knowledge database, a refinement rule set, and a policy repository. The refinement process includes two successive steps: policy transformation and policy composition. Our refinement scheme takes policies written in our logic-based abstract policy language as input and generates low level rules directly implementable by individual enforcement points. We provide concrete policy examples in a coalition scenario that forms a mobile ad hoc network (MANET). We demonstrate policy composition using a distributed firewall scheme named ROFL (ROuting as the Firewall Layer) and access control list as enforcement mechanisms.
Subject(s):
Computer science
Publisher DOI:
http://dx.doi.org/10.1109/INM.2011.5990681
Item views:
75
Metadata:
text | xml

In Partnership with the Center for Digital Research and Scholarship at Columbia University Libraries/Information Services | Terms of Use