@inproceedings{a0918d1799824bc294da17e014e33c7b,
title = "A framework for managing user-defined security policies to support network security functions",
abstract = "Network Functions Virtualization (NFV) and Software Defined Networking (SDN) make it easier for security administrators to manage security policies on a network system. However, it is still challenging to map high-level security policies defined by users into low-level security policies that can be applied to network security devices. To address this problem, we introduce a framework for effectively managing user-defined security policies for network security functions based on standard interfaces that are currently being standardized in an IETF working group. To show the feasibility of the proposed framework, we implemented a prototype based on the RESTCONF protocol and showed that the proposed framework can be applied in real-world scenarios for network separation, DDoS mitigation and ransomeware prevention.",
keywords = "NSF, Security management, Security policy",
author = "Eunsoo Kim and Kuyju Kim and Seungjin Lee and Jaehoon Jeong and Hyoungshick Kim",
note = "Publisher Copyright: {\textcopyright} 2018 ACM.; 12th International Conference on Ubiquitous Information Management and Communication, IMCOM 2018 ; Conference date: 05-01-2018 Through 07-01-2018",
year = "2018",
month = jan,
day = "5",
doi = "10.1145/3164541.3164569",
language = "English",
series = "ACM International Conference Proceeding Series",
publisher = "Association for Computing Machinery",
booktitle = "Proceedings of the 12th International Conference on Ubiquitous Information Management and Communication, IMCOM 2018",
}