J. Guttman, Filtering postures: local enforcement for global policies, 1997 IEEE Symposium on Security and Privacy  Home/Search   Document Details and Download   Summary   Related Articles   Check

....number of users, peer nodes, and policy entries. A similar system in [12] covers additional configuration domains (such as QoS) Differences are the policy description language and the method by which the rule set is pruned for any particular device. Considerable work of this style has been done [9, 16]. Another approach to policy coordination [10] proposes a ticket based architecture using mediators to coordinate policy between different information enclaves. Policy relevant to an object is retrieved by a central repository by the controlling mediator. Mediators also map foreign principals to ....

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

....to the number of users, peer nodes, and policy entries. A similar system [12] covers additional configuration domains (such as QoS) Differences are the policy description language and the method by which the rule set is pruned for any particular device. Other work in the same vein is described in [8] and [18] Another approach to policy coordination [9] proposes a ticket based architecture using mediators to coordinate policy between different information enclaves. Policy relevant to an object is retrieved by a central repository by the controlling mediator. Mediators also map foreign ....

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

....are inevitable. Without a rigorous way to verify correctness of policy specifications, large scale VPN deployment is going to be troublesome due to possible unexpected security breaches. The research effort closest to ours is probably firewall management toolkit [13] and filtering postures [14], in the sense of defining higher level policies centrally and distributing the policies to enforce. While they only focus on access control policies, we focus on interacted IPSec policies, i.e. VPN tunnel policies as well as access policies. Currently most firewalls are equipped with VPN ....

J. D. Guttman, "Filtering Postures: Local enforcement for global policies". In Proc. IEEE Symp. on Security and Privacy, Oakland, CA, 1997

....of intent. Conventional usage of the phrase security policy seldom conveys the intent, but almost always the means to implement and enforce the intent. We turn this on its head by having our security policy convey intent and nothing more. An important early step in policy specification is [6] which concerns itself with generating routing filter rules based on a lisp like specification language in a logical framework. A large subset of policy based management research is focused on linguistic issues of Policy. In the literature, policy language is almost synonymous with rule sets (see ....

J. Guttman. Filtering Postures: Local Enforcement for Global Policies. Proceedings of the 1997 IEEE Symposium on Security and Privacy.

....machine are a copy of those managed by the administrator on the common firewall console. These security policy management systems are not currently designed to manage policy where the enforcement data is automatically generated based on network topology, which is the case for an MLF. Guttman [28] describes a specification language allowing administrators to test whether the composition of filters along packet paths conforms to security policy. Developing tools that analyze the global effects of local filtering policies is an important area of future research. Such tools would help ....

J.D. Guttman, "Filtering Postures: Local Enforcement for Global Policies," Proceedings of the 1997 IEEE Symposium on Security and Privacy, Oakland, CA., pp. 120-129.

....(e.g. tests where packets originating from the Internet with service Smtp are involved etc. Performance. Computing test cases of the above kind for our example network takes about .1s per test case, measured on a SUN UltraSparc with 1GB of main memory running at 400MHz. 3 Related Work [Gut97, Gut01] introduces a language for expressing global network access control policies and algorithms to compute lters for such policies and to check lters against policy violations. BMNW99, MWZ00] present a rewall management toolkit. Contrary to ours, the intention of this work is not rewall ....

J. Guttman. Filtering postures: Local enforcement for global policies. In IEEE Symposium on Security and Privacy, 1997.

....Can be spoofed from [ext] 10.10.11.64 26 OK 10.10. 11.128 25 OK 5 Related work Much of the research in firewalls has focused either on performance or the problem of expressing an organization s security policy in a language understood by a firewall, i.e. tools for creating access lists [2, 3, 11]. There are also some commercial products available, such as Cisco s Access Control List Manager [5] and Secure Policy Manager [16] Modern firewall products usually allow the specification of rules using a graphical user interface. The work most similar to ours has been done by Mayer, Wool, and ....

....a logic programming syntax. Several researches have also implemented tools for describing the contents of an access list based on other approaches. Guttman describes an approach for generating filters based on a security policy and verifying that a packet filter implements some security policy [11]. Molitor describes a tool which prints a more human readable description of an access list [20] Bartal et al. have written a rule illustrator , a tool for drawing an access list in a graphical form [2] The low level implementation of packet filters, called the packet classification problem ....

Joshua D. Guttman. Filtering postures: Local enforcement for global policies. In Proceedings of the 1997 IEEE Symposium on Security and Privacy, Oakland, California, May 1997.

....be found in [ABG 97] While most of the firewall offerings include configuration tools with varying degrees of sophistication, none of these vendors seems to focus on firewall and security management tools. The work closest in spirit to ours is probably Guttman s work on filtering postures [Gut97] There, a Lisp like definition language is introduced to define a filtering policy. Also, a method for 3 New layer of abstraction Model Definition Lang. Parser Model Compiler FW configuration Model Compiler Entity Rel ship Model files (e.g. rules, topology) FW configuration files ....

.... (e.g. LMF) Debugging Tool Visualization and Figure 1: Toolkit Components localizing the policy to the different interfaces of a filtering router is given (where the local policies are again expressed in the same Lisp like formalism) While an important step towards security management, Gut97] does not provide complete separation of the security policy from the network topology or automatic generation of firewall rules. The first issue also makes policy modularization and re use much harder. Furthermore, while the specification is firewall independent, it (and the localization method) ....

J. D. Guttman. Filtering postures: Local enforcement for global policies. In Proc. IEEE Symp. on Security and Privacy, Oakland, CA, 1997.

....vendors seems to focus on firewall and security management tools. However, we are currently seeing a few firstgeneration products being introduced in this arena, e.g. by Check Point, Cisco, and SOLsoft [7] The work closest in spirit to ours is probably Guttman s work on filtering postures [10]. There, a Lisp like definition language is introduced to define a filtering policy. Also, a method for localizing the policy to the different interfaces of a filtering router is given (where the local policies are again expressed in the same Lisp like formalism) While an important step towards ....

....definition language is introduced to define a filtering policy. Also, a method for localizing the policy to the different interfaces of a filtering router is given (where the local policies are again expressed in the same Lisp like formalism) While an important step towards security management, [10] does not provide complete separation of the security policy from the network topology or automatic generation of firewall rules. The first issue also makes policy modularization and re use much harder. Furthermore, while the specification is firewall independent, it (and the localization method) ....

J. D. Guttman. Filtering postures: Local enforcement for global policies. In Proc. IEEE Symp. on Security and Privacy, Oakland, CA, 1997.

No context found.

Joshua D. Guttman. Filtering postures: Local enforcement for global policies. In Proceedings, 1997 IEEE Symposium on Security and Privacy, pages 120--29. IEEE Computer Society Press, May 1997.

No context found.

Joshua D. Guttman. Filtering postures: Local enforcement for global policies. In Proceedings, 1997.

No context found.

Joshua D. Guttman. Filtering postures: Local enforcement for global policies. In Proceedings, 1997.

....the filtering decisions of individual routers. These decisions can be based only on local information: namely, what interface the packet arrived at; what interface the packet will be routed out through; and what the headers say. An advantage of this approach is that it can be made fully rigorous [9], yielding an automated verification method for this particular security problem. A prototype implementation helped us refine the method and establish its feasibility. Because we will consider only a logical description of the filtering to be done at each router interface, we will coin a new ....

....the routers (or dual homed hosts) that connect the areas and move packets between them. There is an (undirected) edge between a router and an area if the router has an interface on that area. Intuitive notions such as a path through the network may be formalized by natural mathematical concepts [9]. A 3 path through the network is a sequence of immediately connected nodes on the associated bipartite graph. Thus, we ignore issues of routing, so that our conclusions will hold even on the conservative assumption that routing tables may change unpredictably. Formalizing a real world network ....

[Article contains additional citation context not shown here]

J. D. Guttman. Filtering postures: Local enforcement for global policies. MTR 97B007, The MITRE Corporation, November 1996.

....meet that security goal if they are combined in a particular way These questions are the core of the crucial real world problem of security management. 2 1.2 The Structure of these Lectures We divide the remainder of our report into five sections. Section 2 Packet Trajectories : Derived from [11, 13]. Coauthors: A. Herzog and J. Thayer. Contents : Introduce the packet protection problem. Define a class of security goals that filtering routers can achieve. Network model. Algorithms to determine whether given filtering behavior achieves a goal, and to assign filtering behavior that will ....

....services that they provide and the level of trust in those that may have crafted the datagrams. We will describe a systematic method to ensure that security policies of this kind are faithfully implemented, despite the topological complexity of the networks. Most of this material is contained in [11] in a more systematic style, although the material on abstraction is previously unpublished. We have carried out a similar study of how to use the ip security protocols (IPsec) to achieve genuine confidentiality, authentication, and integrity. The ip security protocols apply cryptographic ....

[Article contains additional citation context not shown here]

Joshua D. Guttman. Filtering postures: Local enforcement for global policies. In Proceedings,

No context found.

J. Guttman, Filtering postures: local enforcement for global policies, 1997 IEEE Symposium on Security and Privacy

No context found.

Joshua D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

No context found.

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

No context found.

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

No context found.

Joshua D. Guttman. Filtering Postures: Local Enforcement for Global Policies. IEEE Symposium on Security and Privacy. Oakland. May 1997.

No context found.

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

No context found.

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

No context found.

J. D. Guttman. Filtering Postures: Local Enforcement for Global Policies. In IEEE Security and Privacy Conference, pages 120--129, May 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC