Skip to main content
Article thumbnail
Location of Repository

MIRAGE: A Management Tool for the Analysis and Deployment of Network Security Policies

By Joaquin Garcia-alfaro and Stere Preda

Abstract

Abstract. We present the core functionality of MIRAGE, a management tool for the analysis and deployment of configuration policies over network security components, such as firewalls, intrusion detection systems, and VPN routers. We review the two main functionalities embedded in our current prototype: (1) a bottom-up analysis of already deployed network security configurations and (2) a top-down refinement of global policies into network security component configurations. In both cases, MIRAGE provides intra-component analysis to detect inconsistencies in single component deployments; and inter-component analysis, to detect multi-component deployments which are not consistent. MIRAGE also manages the description of the security architecture topology, to guarantee the proper execution of all the processes

Topics: Network security, Access control, Analysis of configurations, Or- BAC
Year: 2013
OAI identifier: oai:CiteSeerX.psu:10.1.1.309.9898
Provided by: CiteSeerX
Download PDF:
Sorry, we are unable to provide the full text but you may find it at the following location(s):
  • http://citeseerx.ist.psu.edu/v... (external link)
  • http://deic.uab.es/~joaquin/pa... (external link)
  • Suggested articles


    To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.