Title | ||
---|---|---|
Security Policy Instantiation to React to Network Attacks - An Ontology-based Approach using OWL and SWRL |
Abstract | ||
---|---|---|
A quick and efficient reaction to an attack is important to address the evolution of security incidents in current communication networks. The ReD (Reaction after Detection) project's aim is to design solutions that enhance the detection/reaction security process. This will improve the overall resilience of IP networks to attacks, helping telecommunication and service providers to maintain sufficient quality of service to comply with service level agreements. A main component within this project is in charge of instantiating new security policies that counteract the network attacks. This paper proposes an ontology-based methodology for the instantiation of these security policies. This approach provides a way to map alerts into attack contexts, which are later used to identify the policies to be applied in the network to solve the threat. For this, ontologies to describe alerts and policies are defined, using inference rules to perform such mappings. |
Year | Venue | Keywords |
---|---|---|
2008 | SECRYPT 2008: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY | attack reaction,policy instantiation,ontology,OrBAC,IDMEF,OWL,SWRL |
Field | DocType | Citations |
Ontology,World Wide Web,Computer science,Computer security,Security policy | Conference | 1 |
PageRank | References | Authors |
0.38 | 1 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Jorge E. López de Vergara | 1 | 187 | 26.98 |
Enrique Vázquez | 2 | 95 | 40.48 |
Javier Guerra | 3 | 8 | 1.02 |