Proceedings of the KAIS Fall Conference (한국산학기술학회:학술대회논문집)
- 2003.11a
- /
- Pages.155-162
- /
- 2003
Modeling and Simulation of Policy-based Network Security
- Lee, Won-young (School of Information & Communications Engineering, Sungkyunkwan University) ;
- Cho, Tae-ho (School of Information & Communications Engineering, Sungkyunkwan University)
- Published : 2003.11.01
Abstract
Today's network consists of a large number of routers and servers running a variety of applications. Policy-based network provides a means by which the management process can be simplified and largely automated. In this paper we build a foundation of policy-based network modeling and simulation environment. The procedure and structure for the induction of policy rules from vulnerabilities stored in SVDB (Simulation based Vulnerability Data Base) are developed. The structure also transforms the policy rules into PCIM (Policy Core Information Model). The effect on a particular policy can be tested and analyzed through the simulation with the PCIMs and SVDB.
Keywords
- Security Policy;
- PBNM (Policy-based Network Management);
- network security;
- DEVS formalism;
- simulation;
- Data Mining