An Automata-based Security Policy Translation for Network Security Functions

Jinhyuk Yang; Jaehoon Paul Jeong

doi:10.1109/ICTC.2018.8539702

An Automata-based Security Policy Translation for Network Security Functions

Jinhyuk Yang, Jaehoon Paul Jeong

Department of Computer Science and Engineering

Sungkyunkwan University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

9 Scopus citations

Abstract

This paper proposes the design of a security policy translator in Interface to Network Security Functions (I2NSF) framework. Also, this paper shows the benefits of designing security policy translations. I2NSF is an architecture for providing various Network Security Functions (NSFs) to users. I2NSF user should be able to use NSF even if user has no overall knowledge of NSFs. Generally, policies which are generated by I2NSF user contain abstract data because users do not consider the attributes of NSFs when creating policies. Therefore, the I2NSF framework requires a translator that automatically finds the NSFs which is required for policy when Security Controller receives a security policy from the user and translates it for selected NSFs. We satisfied the above requirements by modularizing the translator through Automata theory.

Original language	English
Title of host publication	9th International Conference on Information and Communication Technology Convergence
Subtitle of host publication	ICT Convergence Powered by Smart Intelligence, ICTC 2018
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	268-272
Number of pages	5
ISBN (Electronic)	9781538650400
DOIs	https://doi.org/10.1109/ICTC.2018.8539702
State	Published - 16 Nov 2018
Event	9th International Conference on Information and Communication Technology Convergence, ICTC 2018 - Jeju Island, Korea, Republic of Duration: 17 Oct 2018 → 19 Oct 2018

Publication series

Name	9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018

Conference

Conference	9th International Conference on Information and Communication Technology Convergence, ICTC 2018
Country/Territory	Korea, Republic of
City	Jeju Island
Period	17/10/18 → 19/10/18

Keywords

Automata theory
Interface to Network Security Functions
Policy Translation

Access to Document

10.1109/ICTC.2018.8539702

Cite this

Yang, J., & Jeong, J. P. (2018). An Automata-based Security Policy Translation for Network Security Functions. In 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018 (pp. 268-272). Article 8539702 (9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICTC.2018.8539702

Yang, Jinhyuk ; Jeong, Jaehoon Paul. / An Automata-based Security Policy Translation for Network Security Functions. 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 268-272 (9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018).

@inproceedings{43fbe70a04cb4c9da78600b9967f0c53,

title = "An Automata-based Security Policy Translation for Network Security Functions",

abstract = "This paper proposes the design of a security policy translator in Interface to Network Security Functions (I2NSF) framework. Also, this paper shows the benefits of designing security policy translations. I2NSF is an architecture for providing various Network Security Functions (NSFs) to users. I2NSF user should be able to use NSF even if user has no overall knowledge of NSFs. Generally, policies which are generated by I2NSF user contain abstract data because users do not consider the attributes of NSFs when creating policies. Therefore, the I2NSF framework requires a translator that automatically finds the NSFs which is required for policy when Security Controller receives a security policy from the user and translates it for selected NSFs. We satisfied the above requirements by modularizing the translator through Automata theory.",

keywords = "Automata theory, Interface to Network Security Functions, Policy Translation",

author = "Jinhyuk Yang and Jeong, \{Jaehoon Paul\}",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 9th International Conference on Information and Communication Technology Convergence, ICTC 2018 ; Conference date: 17-10-2018 Through 19-10-2018",

year = "2018",

month = nov,

day = "16",

doi = "10.1109/ICTC.2018.8539702",

language = "English",

series = "9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "268--272",

booktitle = "9th International Conference on Information and Communication Technology Convergence",

}

Yang, J & Jeong, JP 2018, An Automata-based Security Policy Translation for Network Security Functions. in 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018., 8539702, 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018, Institute of Electrical and Electronics Engineers Inc., pp. 268-272, 9th International Conference on Information and Communication Technology Convergence, ICTC 2018, Jeju Island, Korea, Republic of, 17/10/18. https://doi.org/10.1109/ICTC.2018.8539702

An Automata-based Security Policy Translation for Network Security Functions. / Yang, Jinhyuk; Jeong, Jaehoon Paul.
9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018. Institute of Electrical and Electronics Engineers Inc., 2018. p. 268-272 8539702 (9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An Automata-based Security Policy Translation for Network Security Functions

AU - Yang, Jinhyuk

AU - Jeong, Jaehoon Paul

PY - 2018/11/16

Y1 - 2018/11/16

N2 - This paper proposes the design of a security policy translator in Interface to Network Security Functions (I2NSF) framework. Also, this paper shows the benefits of designing security policy translations. I2NSF is an architecture for providing various Network Security Functions (NSFs) to users. I2NSF user should be able to use NSF even if user has no overall knowledge of NSFs. Generally, policies which are generated by I2NSF user contain abstract data because users do not consider the attributes of NSFs when creating policies. Therefore, the I2NSF framework requires a translator that automatically finds the NSFs which is required for policy when Security Controller receives a security policy from the user and translates it for selected NSFs. We satisfied the above requirements by modularizing the translator through Automata theory.

AB - This paper proposes the design of a security policy translator in Interface to Network Security Functions (I2NSF) framework. Also, this paper shows the benefits of designing security policy translations. I2NSF is an architecture for providing various Network Security Functions (NSFs) to users. I2NSF user should be able to use NSF even if user has no overall knowledge of NSFs. Generally, policies which are generated by I2NSF user contain abstract data because users do not consider the attributes of NSFs when creating policies. Therefore, the I2NSF framework requires a translator that automatically finds the NSFs which is required for policy when Security Controller receives a security policy from the user and translates it for selected NSFs. We satisfied the above requirements by modularizing the translator through Automata theory.

KW - Automata theory

KW - Interface to Network Security Functions

KW - Policy Translation

UR - https://www.scopus.com/pages/publications/85059447299

U2 - 10.1109/ICTC.2018.8539702

DO - 10.1109/ICTC.2018.8539702

M3 - Conference contribution

AN - SCOPUS:85059447299

T3 - 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018

SP - 268

EP - 272

BT - 9th International Conference on Information and Communication Technology Convergence

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 9th International Conference on Information and Communication Technology Convergence, ICTC 2018

Y2 - 17 October 2018 through 19 October 2018

ER -

Yang J, Jeong JP. An Automata-based Security Policy Translation for Network Security Functions. In 9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 268-272. 8539702. (9th International Conference on Information and Communication Technology Convergence: ICT Convergence Powered by Smart Intelligence, ICTC 2018). doi: 10.1109/ICTC.2018.8539702

An Automata-based Security Policy Translation for Network Security Functions

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this