Memorias de investigación
Artículos en revistas:
Automatic Translation and Enforcement of Cybersecurity Policies Using A High-Level Definition Language
Año:2019
Áreas de investigación
  • Sistema informático
Datos
Descripción
The increasing number of cyber-attacks, their potential destructive capabilities, and the enormous threat they pose for organizations, require the constant design and development of new, faster, and easier to use systems to address them. The automation of security enforcement systems is one of the most important techniques for enabling a fast response to security challenges, but the complexity of security management might hinder the successful achievement of the desired security. Our proposal integrates the automatic enforcement of security rules based on intrusion detection systems with the definition of a high-level user-centered language for the definition of policies. We have designed a translation process from this language to specific network-wise and device-aware rules that can be installed and enforced. The deployment of these rules is determined by an automatic risk assessment process ruled by the detection system monitoring the network. This way, both the automation and easiness of use goals can be achieved using an integrated system. The solution was tested and validated in two different virtualized networks.
Internacional
Si
JCR del ISI
Si
Título de la revista
Entropy
ISSN
1099-4300
Factor de impacto JCR
2,419
Información de impacto
Volumen
DOI
Número de revista
Desde la página
1180
Hasta la página
1180
Mes
DICIEMBRE
Ranking
Q2
Esta actividad pertenece a memorias de investigación
Participantes
Grupos de investigación, Departamentos, Centros e Institutos de I+D+i relacionados
  • Creador: Grupo de Investigación: Redes y Servicios de Telecomunicación e Internet
  • Departamento: Ingeniería de Sistemas Telemáticos
  • Centro o Instituto I+D+i: Centro de I+d+i en Procesado de la Información y Telecomunicaciones